Provably secure password-authenticated key exchange using Diffie-Hellman

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 1807, Issue , 2000, Pages 156-171

  Boyko, Victor ^a   MacKenzie, Philip ^b   Patel, Sarvar ^b  

^a MASSACHUSETTS INSTITUTE OF TECHNOLOGY   (United States)

^b LUCENT TECHNOLOGIES   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

CRYPTOGRAPHY;

EFFICIENT PROTOCOLS; EXPLICIT AUTHENTICATIONS; IMPLICIT AUTHENTICATIONS; KEY EXCHANGE PROTOCOLS; OFF-LINE DICTIONARY ATTACKS; PASSWORD AUTHENTICATED KEY EXCHANGE PROTOCOLS; PASSWORD-AUTHENTICATED KEY EXCHANGE; RANDOM ORACLE MODEL;

AUTHENTICATION;

EID: 84937550984     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/3-540-45539-6_12     Document Type: Conference Paper

References (30)

1. D. Beaver. Secure multiparty protocols and zero-knowledge proof systems tolerating a faulty minority. J. of Cryptology, 4(2):75-122, 1991.
2. M. Bellare, R. Canetti, and H. Krawczyk. A modular approach to the design and analysis of authentication and key exchange protocols. In STOC’98, pages 419-428.
3. M. Bellare, D. Pointcheval, and P. Rogaway. Authenticated key exchange secure against dictionary attacks. In EUROCRYPT 2000, pages 139-155.
4. M. Bellare and P. Rogaway. Entity authentication and key distribution. In CRYPTO’93, pages 232-249.
5. M. Bellare and P. Rogaway. Random oracles are practical: A paradigm for designing efficient protocols. In ACM Security (CCS’93), pages 62-73.
6. M. Bellare and P. Rogaway. Optimal asymmetric encryption. In EUROCRYPT’94, pages 92-111.
7. M. Bellare and P. Rogaway. Provably secure session key distribution|the three party case. In STOC’95, pages 57-66.
8. S. M. Bellovin and M. Merritt. Encrypted key exchange: Password-based protocols secure against dictionary attacks. In Proceedings of IEEE Security and Privacy, pages 72-84, 1992.
9. S. M. Bellovin and M. Merritt. Augmented encrypted key exchange: A password-based protocol secure against dictionary attacks and password file compromise. In ACM Security (CCS’93), pages 244-250.
10. S. Blake-Wilson, D. Johnson, and A. Menezes. Key agreement protocols and their security analysis. In Sixth IMA Intl. Conf. on Cryptography and Coding, 1997.
11. D. Boneh. The decision Diffie-Hellman problem. In Proceedings of the Third Algorithmic Number Theory Symposium, volume 1423 of Lecture Notes in Computer Science, pages 48-63. Springer-Verlag, 1998.
12. M. Boyarsky. Public-key cryptography and password protocols: The multi-user case. In ACM Security (CCS’99), pages 63-72.
13. V. Boyko, P. MacKenzie, and S. Patel. Provably Secure Password-Authenticated Key Exchange Using Diffie-Hellman (full version). http://www.bell-labs.com/user/philmac/research/pak.ps.gz
14. R. Canetti, O. Goldreich, and S. Halevi. The random oracle methodology, revisited. In STOC’98, pages 209-218.
15. W. Diffie and M. Hellman. New directions in cryptography. IEEE Trans. Info. Theory, 22(6):644-654, 1976.
16. T. ElGamal. A public key cryptosystem and a signature scheme based on discrete logarithm. IEEE Trans. Info. Theory, 31:469-472, 1985.
17. E. Fujisaki and T. Okamoto. Secure integration of asymmetric and symmetric encryption schemes. In CRYPTO’99, pages 537-554.
18. L. Gong. Optimal authentication protocols resistant to password guessing attacks. In 8th IEEE Computer Security Foundations Workshop, pages 24-29, 1995.
19. L. Gong, T. M. A. Lomas, R. M. Needham, and J. H. Saltzer. Protecting poorly chosen secrets from guessing attacks. IEEE Journal on Selected Areas in Communications, 11(5):648-656, June 1993.
20. S. Halevi and H. Krawczyk. Public-key cryptography and password protocols. In ACM Security (CCS’98), pages 122-131.
21. D. Jablon. Strong password-only authenticated key exchange. ACM Computer Communication Review, ACM SIGCOMM, 26(5):5-20, 1996.
22. D. Jablon. Extended password key exchange protocols immune to dictionary attack. In WETICE’97 Workshop on Enterprise Security, 1997.
23. T. M. A. Lomas, L. Gong, J. H. Saltzer, and R. M. Needham. Reducing risks from poorly chosen keys. ACM Operating Systems Review, 23(5):14-18, Dec. 1989. Proceedings of the 12th ACM Symposium on Operating System Principles.
24. S. Lucks. Open key exchange: How to defeat dictionary attacks without encrypting public keys. In Proceedings of the Workshop on Security Protocols, 1997.
25. P. MacKenzie and R. Swaminathan. Secure network authentication with password information. manuscript.
26. S. Patel. Number theoretic attacks on secure password schemes. In Proceedings of IEEE Security and Privacy, pages 236-247, 1997.
27. V. Shoup. On formal models for secure key exchange. IBM Research Report RZ 3120. April, 1999.
28. M. Steiner, G. Tsudik, and M. Waidner. Refinement and extension of encrypted key exchange. ACM Operating System Review, 29:22-30, 1995.
29. T. Wu. The secure remote password protocol. In NDSS’98, pages 97-111.
30. T. Wu. A real world analysis of Kerberos password security. In NDSS’99.