Efficient verifier-based password-authenticated key exchange in the three-party setting

Authors:
Jeong Ok Kwon;Ik Rae Jeong;Kouichi Sakurai;Dong Hoon Lee
Affiliations:
Graduate School of Information Security CIST, Korea university, 1, 5-Ka, Anam-dong Sungbuk-ku, Seoul, 136-701 Korea;ETRI (Electronics and Telecommunications Research Institute) 161 Gajeong-dong, Yuseoung-Gu, Daejeon, 305-700 Korea;Department of Computer Science and Communication Engineering, Kyushu University 6-10-1 Hakozaki, Higashi-ku, Fukuoka, 812-0053 Japan;Graduate School of Information Security CIST, Korea university, 1, 5-Ka, Anam-dong Sungbuk-ku, Seoul, 136-701 Korea
Venue:
Computer Standards & Interfaces
Year:
2007

Citing 7
Cited 3

Refinement and extension of encrypted key exchange

ACM SIGOPS Operating Systems Review
Undetectable on-line password guessing attacks

ACM SIGOPS Operating Systems Review
Timestamps in key distribution protocols

Communications of the ACM
Password-Authenticated Key Exchange between Clients with Different Passwords

ICICS '02 Proceedings of the 4th International Conference on Information and Communications Security
Entity Authentication and Key Distribution

CRYPTO '93 Proceedings of the 13th Annual International Cryptology Conference on Advances in Cryptology
Secure key agreement protocols for three-party against guessing attacks

Journal of Systems and Software - Special issue: Software engineering education and training
A simple threshold authenticated key exchange from short secrets

ASIACRYPT'05 Proceedings of the 11th international conference on Theory and Application of Cryptology and Information Security

Secure and efficient group key management with shared key derivation

Computer Standards & Interfaces
Verifier-based password-authenticated key exchange protocol in cross-realm setting

CCDC'09 Proceedings of the 21st annual international conference on Chinese control and decision conference
Secure multicast key protocol for electronic mail systems with providing perfect forward secrecy

Security and Communication Networks

Quantified Score

Hi-index	0.00

Visualization

Abstract

In the last few years, researchers have extensively studied the password-authenticated key exchange (PAKE) in the three-party setting. The fundamental security goal of PAKE is security against dictionary attacks. The protocols for verifier-based PAKE are additionally required to be secure against server compromise. Some verifier-based PAKE schemes in the three-party setting have been suggested to solve the server compromise problem. Unfortunately, the protocols are vulnerable to an off-line dictionary attack. In this paper, we present an efficient verifier-based PAKE protocol for three-parties that is secure against known-key attacks and provides forward secrecy. To the best of our knowledge, the proposed protocol is the first secure three-party verifier-based PAKE protocol in the literature.