Password-authenticated key exchange between clients with different passwords

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 2513, Issue , 2002, Pages 134-146

  Byun, Jin Wook ^a   Jeong, Ik Rae ^a   Lee, Dong Hoon ^a   Park, Chang Seop ^b  

^a Korea University   (South Korea)

^b Dankook University   (South Korea)

Author keywords

Cross realm; Dictionary attack; Kerberos; Key exchange; Password authentication

Indexed keywords

ARTIFICIAL INTELLIGENCE; COMPUTER SCIENCE; COMPUTERS;

CROSS-REALM; DICTIONARY ATTACK; KERBEROS; KEY EXCHANGE; PASSWORD AUTHENTICATION;

AUTHENTICATION;

EID: 84944063128     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/3-540-36159-6_12     Document Type: Conference Paper

References (17)

1. M. Bellare, D. Pointcheval and P. Rogaway, “Authenticated key exchange secure against dictionary attacks”, Eurocrypt’00, LNCS Vol.1807, pp.139-155, Springer- Verlag, 2000.
2. S. Bellovin and M. Merrit, “Encrypted key exchange: password based protocols secure against dictionary attacks”, In Proceedings of the Symposium on Security and Privacy, pp.72-84, IEEE, 1992.
3. C. Boyd, A. Mathuria, “Key establishment protocols for secure mobile communications: A selective survey”, ACISP’98, LNCS Vol.1438, pp.344-355, Springer-Verlag, 1998.
4. V. Boyko, P. MacKenzie, and S. Patel, “Provably Secure Password-Authenticated Key Exchange Using Diffie-Hellman”, Eurocrypt’00, LNCS Vol.1807, pp.156-171, Springer-Verlag, 2000
5. G. D. Crescenzo, O. Kornievskaia, “Efficient kerberized multicast in a practical distributed setting”, ISC’01, LNCS Vol.2200, pp.27-45, Springer-Verlag, 2001.
6. D. Denning, G. Sacco, “Timestamps in key distribution protocols”, Communications of the ACM, Vol.24, No.8, pp.533-536, 1981.
7. D. Jablon, “Strong password-only authenticated key exchange”, Computer Communication Review, Vol.26, No.5, pp.5-26, 1996.
8. O. Goldreich and Y. Lindell, “Session-Key Generation Using Human Passwords Only”, Crypto’01, LNCS Vol.2139, pp.408-432, Springer-Verlag, 2001.
9. B. Jaspan, “Dual-workfactor encrypted key exchange: Efficiency preventing password chaining attacks”, In Proceedings of the sixth annual USENIX security conference, pp.43-50, July 1996.
10. M. Hur, B. Tung, T. Ryutov, C. Neuman, A. Medvinsky, G. Tsudik, and B. Sommerfeld, “Pulbic key cryptography for cross-realm authentication in kerberos”, Internet draft, May 2001.
11. J. Katz, R. Ostrovsky and M. Yung, “Efficient Password-Authenticated Key Exchange Using Human-Memorable Passwords”, Eurocrypt’01, LNCS Vol.2045, pp.475-494, Springer-Verlag, 2001.
12. S. Lucks, “Open key exchange: How to defeat dictionary attacks without encryting public keys”, The security Protocol Workshop’97, pp.79-90, 1997.
13. M. Steiner, G. Tsudik, and M. Waider, “Refinement and extension of encrypted key exchange”, ACM Operation Sys. Review, Vol.29, No.3, pp.22-30, 1995.
14. S. P. Miller, B. C. Neuman, J. I. Schiller, J. H. Saltzer, “Kerberos Authentication and Authorization System”, Section E.2.1, Project Athena Technical Plan, M.I.T. October 1988.
15. T. Wu, “Secure Remote Password Protocol”, In Proceedings of the Internet Society Network and Distributed System Security Symposium, pp.97-111, 1998.
16. T. Wu, “A Real-World Analysis of Kerberos Password Security”, In Proceedings of the Internet Society Network and Distributed System Security Symposium, 1999.
17. V. Varadharajan and Y. Mu, “On the Design of Security Protocols for Mobile Communications”, In Proceedings of Twelfth Annual Computer Security Applications Conference, pp.78-87. IEEE Computer Society Press, 1996.