Security analysis of a server-aided RSA key generation protocol

Authors:
Tianjie Cao;Xianping Mao;Dongdai Lin
Affiliations:
,School of Computer Science and Technology, China University of Mining and Technology, Xuzhou, China;School of Computer Science and Technology, China University of Mining and Technology, Xuzhou, China;Institute of Software of Chinese Academy of Sciences, State Key Laboratory of Information Security, Beijing, China
Venue:
ISPEC'06 Proceedings of the Second international conference on Information Security Practice and Experience
Year:
2006

Citing 12
Cited 2

Server-supported signatures

Journal of Computer Security
A method for obtaining digital signatures and public-key cryptosystems

Communications of the ACM
Speeding Up Secret Computations with Insecure Auxiliary Devices

CRYPTO '88 Proceedings of the 8th Annual International Cryptology Conference on Advances in Cryptology
Security and Performance of Server-Aided RSA Computation Protocols

CRYPTO '95 Proceedings of the 15th Annual International Cryptology Conference on Advances in Cryptology
Fast Server-Aided RSA Signatures Secure Against Active Attacks

CRYPTO '95 Proceedings of the 15th Annual International Cryptology Conference on Advances in Cryptology
On Verifiable Implicit Asking Protocols for RSA Computation

ASIACRYPT '92 Proceedings of the Workshop on the Theory and Application of Cryptographic Techniques: Advances in Cryptology
Server-Assisted Generation of a Strong Secret from a Password

WETICE '00 Proceedings of the 9th IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises
The Béguin-Quisquater Server-Aided RSA Protocol from Crypto '95 is not Secure

ASIACRYPT '98 Proceedings of the International Conference on the Theory and Applications of Cryptology and Information Security: Advances in Cryptology
Attacks on protocols for server-aided RSA computation

EUROCRYPT'92 Proceedings of the 11th annual international conference on Theory and application of cryptographic techniques
Server(prover/signer)-aided verification of identity proofs and signatures

EUROCRYPT'95 Proceedings of the 14th annual international conference on Theory and application of cryptographic techniques
Server-Aided verification: theory and practice

ASIACRYPT'05 Proceedings of the 11th international conference on Theory and Application of Cryptology and Information Security
Server-aided RSA key generation against collusion attack

MADNES'05 Proceedings of the First international conference on Secure Mobile Ad-hoc Networks and Sensors

Cryptanalysis of server-aided RSA key generation protocols at MADNES 2005

ATC'07 Proceedings of the 4th international conference on Autonomic and Trusted Computing
New methods of secure outsourcing of scientific computations

The Journal of Supercomputing

Quantified Score

Hi-index	0.00

Visualization

Abstract

Modadugu, Boneh and Kim proposed two RSA key generation protocols (MBK Protocols) to generate the RSA keys efficiently on a low-power handheld device with the help of the untrusted servers, and the servers do not get any useful information about the keys they helped generation. The security of MBK Protocols is based on the assumption that the two servers are unable to share information with each other. To resists a ”collusion attack” ,namely the attack which the two servers collude to share information in MBK Protocols, Chen et al. proposed two improved protocols and claimed that their protocols are secure against such collusion attack. This paper shows that Chen et al.'s standard RSA key generation protocol cannot resist collusion attack and then cannot be used in practice.