Security Analysis of an ID-Based Two-Server Password-Authenticated Key Exchange

Lin Zhang; Zhenfeng Zhang

首页> 外文期刊>IEEE communications letters >Security Analysis of an ID-Based Two-Server Password-Authenticated Key Exchange

【24h】

Security Analysis of an ID-Based Two-Server Password-Authenticated Key Exchange

机译：基于ID的两台服务器通过密码验证的密钥交换的安全性分析

获取原文

获取原文并翻译 | 示例

获取外文期刊封面封底 >>

开具论文收录证明 >>

文献代查 >>

团队文献服务 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Two-server password-authenticated key exchange allows the client to split a low-entropy password into two pieces and store them in two servers, respectively, and the two servers collaboratively authenticate the client and establish session keys. Even though either server has been corrupted, it guarantees that the password still remains secure. In 2014, Yi et al. proposed a compiler that transforms any two-party PAKE protocol to a two-server PAKE protocol by dint of the ID-based public-key encryption system under the standard model. Moreover, it is claimed that the scheme is provably secure in a relevant formal model. In this letter, we point out an existing related-key attack to their scheme so that when one server is corrupted, the adversary can subtly derive the fresh key shared by the remaining two honest parties. In addition, we suggest a simple patch to avoid this concern.

机译：通过两台服务器验证密码的密钥交换，客户端可以将低熵密码分成两部分，分别存储在两台服务器中，两台服务器共同对客户端进行身份验证并建立会话密钥。即使任一服务器已损坏，它也可以确保密码仍然保持安全。 2014年，Yi等。他提出了一种编译器，该编译器通过使用标准模型下基于ID的公钥加密系统将任何两方PAKE协议转换为两服务器PAKE协议。此外，据称该方案在相关正式模型中可证明是安全的。在这封信中，我们指出了对其方案的现有相关密钥攻击，这样，当一台服务器损坏时，对手就可以巧妙地导出其余两个诚实方共享的新密钥。另外，我们建议使用一个简单的补丁程序来避免这种担心。

著录项

来源
《IEEE communications letters 》 |2017年第2期| 302-305| 共4页
作者
Lin Zhang; Zhenfeng Zhang;
展开▼
作者单位

Trusted Computing and Information Assurance Laboratory, Institute of Software, Chinese Academy of Sciences, Beijing, China;

Trusted Computing and Information Assurance Laboratory, Institute of Software, Chinese Academy of Sciences, Beijing, China;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Servers; Protocols; Encryption; Standards; Dictionaries; Computational modeling;

机译：服务器;协议;加密;标准;字典;计算模型;

相似文献

外文文献
中文文献
专利

1. Security Analysis and Enhancements of Verifier-Based Password-Authenticated Key Exchange Protocols in the Three-Party Setting [J] . Shuhua Wu Journal of information science and engineering . 2011 ,第3期

机译：第三方设置中基于验证者的密码验证密钥交换协议的安全性分析和增强
2. Security Analysis of Two Augmented Password-Authenticated Key Exchange Protocols [J] . SeongHan SHIN, Kazukuni KOBARA, Hideki IMAI IEICE Transactions on fundamentals of electronics, communications & computer sciences . 2010 ,第11期

机译：两种增强的密码授权密钥交换协议的安全性分析
3. An Efficient 3D Elliptic Curve Diffie-Hellman (ECDH) Based Two-Server Password-Only Authenticated Key Exchange Protocol with Provable Security [J] . Kumari K. Anitha, Sadasivam G. Sudha, Rohini L. IETE Journal of Research . 2016 ,第6期

机译：基于有效的3D椭圆曲线Diffie-Hellman（ECDH）的两服务器仅口令认证的密钥交换协议，具有可证明的安全性
4. ID-Based Two-Server Password-Authenticated Key Exchange [C] . Xun Yi, Feng Hao, Elisa Bertino European symposium on research in computer security . 2014

机译：基于ID的两台服务器的密码授权密钥交换
5. Analysis of BCNS and Newhope Key-Exchange Protocols. [D] . Hesamian, Seyedamirhossein. 2017

机译：BCNS和Newhope密钥交换协议的分析。
6. Security and efficiency enhancement of an anonymous three-party password-authenticated key agreement using extended chaotic maps [O] . Qi Xie, Yanrong Lu, Xiao Tan, 2012

机译：使用扩展的混沌映射来增强匿名三方密码身份验证的密钥协议的安全性和效率
7. ID-Based Group Password-Authenticated Key Exchange [O] . Xun Yi, Raylin Tso, Eiji Okamoto 2012

机译：基于ID的组密码验证密钥交换
8. Security Analysis of a Multi-Factor Authenticated Key Exchange Protocol [R] . Hao, F., Clarke, D. 2012

机译：多因素认证密钥交换协议的安全性分析

Security Analysis of an ID-Based Two-Server Password-Authenticated Key Exchange

摘要

著录项

相似文献

相关主题

期刊订阅