• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文期刊>IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences >Security Improvement on Wu and Zhu's Protocol for Password-Authenticated Group Key Exchange
【24h】

Security Improvement on Wu and Zhu's Protocol for Password-Authenticated Group Key Exchange

机译:Wu和Zhu的密码验证组密钥交换协议的安全性改进

获取原文
获取原文并翻译 | 示例
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

A group key exchange (GKE) protocol allows a group of parties communicating over a public network to establish a common secret key. As group-oriented applications gain popularity over the Internet, a number of GKE protocols have been suggested to provide those applications with a secure multicast channel. In this work, we investigate the security of Wu and Zhu's password-authenticated GKE protocol presented recently in FC'08. Wu and Zhu's protocol is efficient, supports dynamic groups, and can be constructed generically from any password-authenticated 2-party key exchange protocol. However, despite its attractive features, the Wu-Zhu protocol should not be adopted in its present form. Due to a flaw in its design, the Wu-Zhu protocol fails to achieve authenticated key exchange. We here report this security problem with the Wu-Zhu protocol and show how to solve it.
机译:组密钥交换(GKE)协议允许一组通过公共网络进行通信的各方建立公共密钥。随着面向组的应用程序在Internet上的普及,已经提出了许多GKE协议来为这些应用程序提供安全的多播通道。在这项工作中,我们研究了最近在FC'08中提出的Wu和Zhu的密码认证GKE协议的安全性。 Wu和Zhu的协议高效,支持动态组,并且可以从任何经过密码身份验证的两方密钥交换协议进行通用构造。但是,尽管具有吸引人的功能,但不应以其当前形式采用Wu-Zhu协议。由于其设计中的缺陷,Wu-Zhu协议无法实现经过身份验证的密钥交换。我们在这里报告使用Wu-Zhu协议的安全问题,并展示如何解决它。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号