A New Anonymous Password-Based Authenticated Key Exchange Protocol

Authors:
Jing Yang;Zhenfeng Zhang
Affiliations:
State Key Laboratory of Information Security, Institute of Software, Chinese Academy of Sciences, Beijing, China 100190 and National Engineering Research Center of Information Security, Beijing, C ...;State Key Laboratory of Information Security, Institute of Software, Chinese Academy of Sciences, Beijing, China 100190 and National Engineering Research Center of Information Security, Beijing, C ...
Venue:
INDOCRYPT '08 Proceedings of the 9th International Conference on Cryptology in India: Progress in Cryptology
Year:
2008

Citing 9
Cited 5

Efficient 1-Out-n Oblivious Transfer Schemes

PKC '02 Proceedings of the 5th International Workshop on Practice and Theory in Public Key Cryptosystems: Public Key Cryptography
Protocols for Key Establishment and Authentication

Protocols for Key Establishment and Authentication
Security proofs for an efficient password-based key exchange

Proceedings of the 10th ACM conference on Computer and communications security
Provably secure password-based authentication in TLS

ASIACCS '06 Proceedings of the 2006 ACM Symposium on Information, computer and communications security
A secure threshold anonymous password-authenticated key exchange protocol

IWSEC'07 Proceedings of the Security 2nd international conference on Advances in information and computer security
Efficient password-based authentication and key exchange scheme preserving user privacy

WASA'06 Proceedings of the First international conference on Wireless Algorithms, Systems, and Applications
Interactive diffie-hellman assumptions with applications to password-based authentication

FC'05 Proceedings of the 9th international conference on Financial Cryptography and Data Security
Anonymous password-based authenticated key exchange

INDOCRYPT'05 Proceedings of the 6th international conference on Cryptology in India
Simple password-based encrypted key exchange protocols

CT-RSA'05 Proceedings of the 2005 international conference on Topics in Cryptology

Very-Efficient Anonymous Password-Authenticated Key Exchange and Its Extensions

AAECC-18 '09 Proceedings of the 18th International Symposium on Applied Algebra, Algebraic Algorithms and Error-Correcting Codes
Towards practical anonymous password authentication

Proceedings of the 26th Annual Computer Security Applications Conference
Three-party password-based authenticated key exchange protocol based on bilinear pairings

ICICA'10 Proceedings of the First international conference on Information computing and applications
An efficient and provable secure PAKE scheme with robust anonymity

ICICA'12 Proceedings of the Third international conference on Information Computing and Applications
Anonymous password-based key exchange with low resources consumption and better user-friendliness

Security and Communication Networks

Quantified Score

Hi-index	0.00

Visualization

Abstract

In Indocrypt 2005 Viet et al. first proposed an anonymous password-based key exchange protocol: APAKE and its extension: k -out-of-n APAKE. Then Shin et al. presented an improved protocol TAP. In this paper, we first show that the TAP protocol is vulnerable to two attacks. One is an impersonating attack and the other is an off-line dictionary attack, which is also applied to k -out-of-n APAKE. Furthermore, we propose a novel anonymous password-based key exchange protocol, and prove its security in the random oracle model under the square computational Diffie-Hellman assumption and decision inverted-additive Diffie-Hellman assumption. We also extend our protocol to the distributed setting, which is secure against the proposed attacks.