Security weakness in a three-party pairing-based protocol for password authenticated key exchange

Authors:
Junghyun Nam;Youngsook Lee;Seungjoo Kim;Dongho Won
Affiliations:
School of Information and Communication Engineering, Sungkyunkwan University, 300 Cheoncheon-dong, Suwon-si, Gyeonggi-do 440-746, Republic of Korea;School of Information and Communication Engineering, Sungkyunkwan University, 300 Cheoncheon-dong, Suwon-si, Gyeonggi-do 440-746, Republic of Korea;School of Information and Communication Engineering, Sungkyunkwan University, 300 Cheoncheon-dong, Suwon-si, Gyeonggi-do 440-746, Republic of Korea;School of Information and Communication Engineering, Sungkyunkwan University, 300 Cheoncheon-dong, Suwon-si, Gyeonggi-do 440-746, Republic of Korea
Venue:
Information Sciences: an International Journal
Year:
2007

Citing 23
Cited 22

Refinement and extension of encrypted key exchange

ACM SIGOPS Operating Systems Review
Provably secure session key distribution: the three party case

STOC '95 Proceedings of the twenty-seventh annual ACM symposium on Theory of computing
Three-party encrypted key exchange: attacks and a solution

ACM SIGOPS Operating Systems Review
Identity-Based Encryption from the Weil Pairing

SIAM Journal on Computing
Entity Authentication and Key Distribution

CRYPTO '93 Proceedings of the 13th Annual International Cryptology Conference on Advances in Cryptology
Encrypted Key Exchange: Password-Based Protocols SecureAgainst Dictionary Attacks

SP '92 Proceedings of the 1992 IEEE Symposium on Security and Privacy
A One Round Protocol for Tripartite Diffie–Hellman

Journal of Cryptology
Secure One-Round Tripartite Authenticated Key Agreement Protocol from Weil Pairing

AINA '05 Proceedings of the 19th International Conference on Advanced Information Networking and Applications - Volume 2
Modeling insider attacks on group key-exchange protocols

Proceedings of the 12th ACM conference on Computer and communications security
Cryptanalysis of tripartite and multi-party authenticated key agreement protocols

Information Sciences: an International Journal
Authenticated key exchange secure against dictionary attacks

EUROCRYPT'00 Proceedings of the 19th international conference on Theory and application of cryptographic techniques
Provably secure password-authenticated key exchange using Diffie-Hellman

EUROCRYPT'00 Proceedings of the 19th international conference on Theory and application of cryptographic techniques
Protocols for Authentication and Key Establishment

Protocols for Authentication and Key Establishment
Password based key exchange with mutual authentication

SAC'04 Proceedings of the 11th international conference on Selected Areas in Cryptography
Examining indistinguishability-based proof models for key establishment protocols

ASIACRYPT'05 Proceedings of the 11th international conference on Theory and Application of Cryptology and Information Security
Errors in computational complexity proofs for protocols

ASIACRYPT'05 Proceedings of the 11th international conference on Theory and Application of Cryptology and Information Security
Interactive diffie-hellman assumptions with applications to password-based authentication

FC'05 Proceedings of the 9th international conference on Financial Cryptography and Data Security
Password-Based authenticated key exchange in the three-party setting

PKC'05 Proceedings of the 8th international conference on Theory and Practice in Public Key Cryptography
On session identifiers in provably secure protocols: the Bellare-Rogaway three-party key distribution protocol revisited

SCN'04 Proceedings of the 4th international conference on Security in Communication Networks
A new two-party identity-based authenticated key agreement

CT-RSA'05 Proceedings of the 2005 international conference on Topics in Cryptology
An extension of secure group communication using key graph

Information Sciences: an International Journal
New multiparty authentication services and key agreement protocols

IEEE Journal on Selected Areas in Communications
Protecting poorly chosen secrets from guessing attacks

IEEE Journal on Selected Areas in Communications

EC2C-PAKA: An efficient client-to-client password-authenticated key agreement

Information Sciences: an International Journal
Resource-aware protocols for authenticated group key exchange in integrated wired and wireless networks

Information Sciences: an International Journal
Hybrid proxy multisignature: A new type multi-party signature

Information Sciences: an International Journal
Three weaknesses in a simple three-party key exchange protocol

Information Sciences: an International Journal
Cryptanalysis of simple three-party key exchange protocol (S-3PAKE)

Information Sciences: an International Journal
A round- and computation-efficient three-party authenticated key exchange protocol

Journal of Systems and Software
Enhanced password-based simple three-party key exchange protocol

Computers and Electrical Engineering
Determining a parallel session attack on a key distribution protocol using a model checker

Proceedings of the 6th International Conference on Advances in Mobile Computing and Multimedia
A countable and time-bound password-based user authentication scheme for the applications of electronic commerce

Information Sciences: an International Journal
Cryptanalysis of two three-party encrypted key exchange protocols

Computer Standards & Interfaces
Development of a new cryptographic construct using palmprint-based fuzzy vault

EURASIP Journal on Advances in Signal Processing - Special issue on recent advances in biometric systems: a signal processing perspective
Secure threshold multi authority attribute based encryption without a central authority

Information Sciences: an International Journal
A communication-efficient three-party password authenticated key exchange protocol

Information Sciences: an International Journal
A security weakness in Abdalla et al.'s generic construction of a group key exchange protocol

Information Sciences: an International Journal
Three-party password-based authenticated key exchange protocol based on bilinear pairings

ICICA'10 Proceedings of the First international conference on Information computing and applications
Provably secure and efficient identification and key agreement protocol with user anonymity

Journal of Computer and System Sciences
Multi-factor authenticated key exchange protocol in the three-party setting

Inscrypt'10 Proceedings of the 6th international conference on Information security and cryptology
Provably secure three-party password-based authenticated key exchange protocol

Information Sciences: an International Journal
A new proxy signature scheme for a specified group of verifiers

Information Sciences: an International Journal
Finding and fixing vulnerabilities in several three-party password authenticated key exchange protocols without server public keys

Information Sciences: an International Journal
Provably secure three party encrypted key exchange scheme with explicit authentication

Information Sciences: an International Journal
Security analysis and improvements of a communication-efficient three-party password authenticated key exchange protocol

The Journal of Supercomputing

Quantified Score

Hi-index	0.07

Visualization

Abstract

Authentication and key exchange are fundamental for establishing secure communication channels over public insecure networks. Password-based protocols for authenticated key exchange are designed to work even when user authentication is done via the use of passwords drawn from a small known set of values. Recently, Wen et al. (H.-A. Wen, T.-F. Lee, T. Hwang, Provably secure three-party password-based authenticated key exchange protocol using Weil pairing, IEE Proceedings-Communications 152 (2) (2005) 138-143) proposed a new protocol for password-based authenticated key exchange in the three-party setting, where the clients trying to establish a common secret key do not share a password between themselves but only with a trusted server. Wen et al.'s protocol carries a claimed proof of security in a formal model of communication and adversarial capabilities. However, this work shows that the protocol for three-party key exchange is completely insecure and the claim of provable security is seriously incorrect. We conduct a detailed analysis of flaws in the protocol and its security proof, in the hope that no similar mistakes are made in the future.