EPA: an efficient password-based protocol for authenticated key exchange

Authors:
Yong Ho Hwang;Dae Hyun Yum;Pil Joong Lee
Affiliations:
Department of Electronic and Electrical Engineering, Pohang University of Science & Technology, Pohang, Kyoungbuk, Rep. of Korea;Department of Electronic and Electrical Engineering, Pohang University of Science & Technology, Pohang, Kyoungbuk, Rep. of Korea;Department of Electronic and Electrical Engineering, Pohang University of Science & Technology, Pohang, Kyoungbuk, Rep. of Korea
Venue:
ACISP'03 Proceedings of the 8th Australasian conference on Information security and privacy
Year:
2003

Citing 9
Cited 4

Entity authentication and key distribution

CRYPTO '93 Proceedings of the 13th annual international cryptology conference on Advances in cryptology
Complexity and Fast Algorithms for Multiexponentiations

IEEE Transactions on Computers
Timestamps in key distribution protocols

Communications of the ACM
More Efficient Password-Authenticated Key Exchange

CT-RSA 2001 Proceedings of the 2001 Conference on Topics in Cryptology: The Cryptographer's Track at RSA
Forward Secrecy and Its Application to Future Mobile Communications Security

PKC '00 Proceedings of the Third International Workshop on Practice and Theory in Public Key Cryptography: Public Key Cryptography
Extended Password Key Exchange Protocols Immune to Dictionary Attacks

WET-ICE '97 Proceedings of the 6th Workshop on Enabling Technologies on Infrastructure for Collaborative Enterprises
Encrypted Key Exchange: Password-Based Protocols SecureAgainst Dictionary Attacks

SP '92 Proceedings of the 1992 IEEE Symposium on Security and Privacy
Authenticated key exchange secure against dictionary attacks

EUROCRYPT'00 Proceedings of the 19th international conference on Theory and application of cryptographic techniques
Provably secure password-authenticated key exchange using Diffie-Hellman

EUROCRYPT'00 Proceedings of the 19th international conference on Theory and application of cryptographic techniques

EAP using the split password-based authenticated key agreement

WISA'06 Proceedings of the 7th international conference on Information security applications: PartI
Errors in computational complexity proofs for protocols

ASIACRYPT'05 Proceedings of the 11th international conference on Theory and Application of Cryptology and Information Security
New efficient simple authenticated key agreement protocol

COCOON'05 Proceedings of the 11th annual international conference on Computing and Combinatorics
One-Round protocol for two-party verifier-based password-authenticated key exchange

CMS'06 Proceedings of the 10th IFIP TC-6 TC-11 international conference on Communications and Multimedia Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

A password-based protocol for authenticated key exchange must provide security against attacks using low entropy of a memorable password. We propose a new password-based protocol for authenticated key exchange, EPA (Efficient Password-based protocol for Authenticated key exchange), which has smaller computational and communicational workloads than previously proposed protocols with the same security requirements. EPA is an asymmetric model in which each client has a password and the server has a password file. While the server's password file is compromised, the client's password is not directly exposed. However, if the adversary mounts an additional dictionary attack, he can obtain the client's password. By using a modified amplified password file, we construct EPA+, which is secure against dictionary attack and server impersonation even if the server's password file is compromised.