Efficient Password-Based Authenticated Key Exchange Without Public Information

机译：无需公共信息即可进行基于密码的有效身份验证密钥交换

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Since the first password-based authenticated key exchange (PAKE) was proposed, it has enjoyed a considerable amount of interest from the cryptographic research community. To our best knowledge, most of proposed PAKEs based on Diffie-Hellman key exchange need some public information, such as generators of a finite cyclic group. However, in a client-server environment, not all servers use the same public information, which demands clients authenticate those public information before beginning PAKE. It is cumbersome for users. What's worse, it may bring some secure problems with PAKE, such as substitution attack. To remove these problems, in this paper, we present an efficient password-based authenticated key exchange protocol without any public information. We also provide a formal security analysis in the nonconcurrent setting, including basic security, mutual authentication, and forward secrecy, by using the random oracle model.

机译：自从提出第一个基于密码的认证密钥交换（PAKE）以来，它就引起了密码研究界的极大兴趣。据我们所知，大多数基于Diffie-Hellman密钥交换的提议PAKE需要一些公共信息，例如有限循环群的生成器。但是，在客户端-服务器环境中，并非所有服务器都使用相同的公共信息，这要求客户端在开始PAKE之前验证这些公共信息。对于用户来说很麻烦。更糟糕的是，它可能会给PAKE带来一些安全问题，例如替代攻击。为了消除这些问题，在本文中，我们提出了一种有效的基于密码的，经过身份验证的密钥交换协议，无需任何公共信息。我们还使用随机Oracle模型在非并行设置中提供了正式的安全性分析，包括基本安全性，相互身份验证和转发保密性。

著录项

来源
《European Symposium on Research in Computer Security; 20070924-26; Dresden(DE)》|2007年|P.299-310|共12页
会议地点 Dresden(DE)
作者
Jun Shao; Zhenfu Cao; Licheng Wang; Rongxing Lu;
展开▼
作者单位

Department of Computer Science and Engineering Shanghai Jiao Tong University;

Department of Electrical and Computer Engineering University of Waterloo;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类安全保密;
关键词

相似文献

外文文献
中文文献
专利

1. An Enhanced and Secure Three-Party Password-based Authenticated Key Exchange Protocol without Using Server's Public-Keys and Symmetric Cryptosystems [J] . Farash M. S., Attari M. A. Engineering Economics . 2014,第2期

机译：无需使用服务器的公钥和对称密码系统的增强的安全的，基于三方密码的身份验证密钥交换协议
2. Simple password-based three-party authenticated key exchange without server public keys [J] . Lee TF, Hwang T Information Sciences: An International Journal . 2010,第9期

机译：基于简单的基于密码的第三方认证密钥交换，而无需服务器公共密钥
3. PASSWORD-BASED AUTHENTICATED KEY EXCHANGE PROTOCOL WITHOUT TRUSTED THIRD PARTY FOR MULTI-SERVER ENVIRONMENTS [J] . Chien-Lung Hsu, Tzong-Sun Wu, Han-Yu Lin International Journal of Innovative Computing Information and Control . 2012,第3A期

机译：在多服务器环境中没有可信任的第三方的基于密码的授权密钥交换协议
4. Efficient Password-Based Authenticated Key Exchange Without Public Information [C] . Jun Shao, Zhenfu Cao, Licheng Wang, European Symposium on Research in Computer Security . 2007

机译：有效的基于密码的身份验证密钥交换，无需公共信息
5. Efficient Public-Key Watermark Techniques for Authentication [D] . Jiang, Feng. 2017

机译：高效的公钥水印认证技术
6. An efficient dynamic ID-based remote user authentication scheme using self-certified public keys for multi-server environments [O] . Shudong Li, Xiaobo Wu, Dawei Zhao, 2012

机译：一种有效的基于动态ID的远程用户身份验证方案，该方案使用了用于多个服务器环境的自认证公钥
7. Efficient Password-based Authenticated Key Exchange without Public Information ∗ [O] . Jun Shao, Zhenfu Cao, Licheng Wang, 2007

机译：无需公开信息即可进行有效的基于密码的认证密钥交换*

Efficient Password-Based Authenticated Key Exchange Without Public Information

摘要

著录项

相似文献

相关主题

期刊订阅