Efficient three-party key exchange protocols with round efficiency

被引：12

作者：

Youn, Taek-Young ^{[1
]}

Kang, Eun Sook ^{[2
]}

Lee, Changhoon ^{[3
]}

机构：

[1] Elect & Telecommun Res Inst, Cryptog Res Team, Taejon 305700, South Korea

[2] Korea Univ, Dept Math, Yeongi Gun, Chungcheongnam, South Korea

[3] Hanshin Univ, Sch Comp Engn, Osan Si, Gyeonggi Do, South Korea

来源：

TELECOMMUNICATION SYSTEMS | 2013年 / 52卷 / 02期

关键词：

Cryptanalysis; Password; Key exchange; Three-party setting; Password guessing attack;

D O I：

10.1007/s11235-011-9649-3

中图分类号：

TN [电子技术、通信技术];

学科分类号：

0809 ;

摘要：

Recently, Guo et al. discovered some security flaws of the simple three-party key exchange protocol proposed by Lu and Cao, and proposed an improved protocol. Independently, Chung and Ku also showed some weaknesses of Lu and Cao's protocol, and provided an improved protocol. In this paper, we review some insecurity of Lu and Cao's protocol and analyze two improved protocols proposed by Guo et al. and Chung and Ku. Then we show that the protocols are still insecure. They are vulnerable to an adversary who performs an off-line password guessing attack. We provide a countermeasure by performing detailed analysis on the security flaws in two improved protocols. We also propose a secure three-party password-authenticated key exchange protocol which requires three rounds.

引用

页码：1367 / 1376

页数：10

共 50 条

[21] Efficient three-party password-based authenticated key exchange protocol
Xu, C.-X., 1600, Univ. of Electronic Science and Technology of China (41):
[22] Efficient and secure three-party authenticated key exchange protocol for mobile environments
Chou, Chih-ho
Tsai, Kuo-yu
Wu, Tzong-chen
Yeh, Kuo-hui
JOURNAL OF ZHEJIANG UNIVERSITY-SCIENCE C-COMPUTERS & ELECTRONICS, 2013, 14 (05): : 347 - 355
[23] Cryptanalysis of an efficient three-party password-based key exchange scheme
Simplicio, Marcos A., Jr.
Sakuragui, Rony R. M.
INTERNATIONAL JOURNAL OF COMMUNICATION SYSTEMS, 2012, 25 (11) : 1443 - 1449
[24] Cryptanalysis of an efficient three-party password-based key exchange scheme
Yoon, Eun-Jun
Yoo, Kee-Young
2012 INTERNATIONAL WORKSHOP ON INFORMATION AND ELECTRONICS ENGINEERING, 2012, 29 : 3972 - 3979
[25] Efficient three-party authentication and key agreement protocols resistant to password guessing attacks
Yeh, HT
Sun, HM
Hwang, T
JOURNAL OF INFORMATION SCIENCE AND ENGINEERING, 2003, 19 (06) : 1059 - 1070
[26] Three weaknesses in a simple three-party key exchange protocol
Chung, Hao-Rung
Ku, Wei-Chi
INFORMATION SCIENCES, 2008, 178 (01) : 220 - 229
[27] A PRACTICAL THREE-PARTY AUTHENTICATED KEY EXCHANGE PROTOCOL
Lo, Nai Wei
Yeh, Kuo-Hui
INTERNATIONAL JOURNAL OF INNOVATIVE COMPUTING INFORMATION AND CONTROL, 2010, 6 (06): : 2469 - 2483
[28] Two-Round Password-Only Authenticated Key Exchange in the Three-Party Setting
Nam, Junghyun
Choo, Kim-Kwang Raymond
Han, Sangchul
Paik, Juryon
Won, Dongho
SYMMETRY-BASEL, 2015, 7 (01): : 105 - 124
[29] Analysis of Two Pairing-based Three-party Password Authenticated Key Exchange Protocols
Phan, Raphael C. -W.
Yau, Wei-Chuen
Goi, Bok-Min
NSS: 2009 3RD INTERNATIONAL CONFERENCE ON NETWORK AND SYSTEM SECURITY, 2009, : 102 - +
[30] Dictionary Attacks against Password-Based Authenticated Three-Party Key Exchange Protocols
Nam, Junghyun
Choo, Kim-Kwang Raymond
Kim, Moonseong
Paik, Juryon
Won, Dongho
KSII TRANSACTIONS ON INTERNET AND INFORMATION SYSTEMS, 2013, 7 (12): : 3244 - 3260

← 1 2 3 4 5 →