Authenticated key exchange protocol with enhanced freshness properties

Hai Huang; Zhenfu Cao

doi:10.1002/sec.238

Authenticated key exchange protocol with enhanced freshness properties

Hai Huang
, Zhenfu Cao^*

^*Corresponding author for this work

Shanghai Jiao Tong University

Research output: Contribution to journal › Article › peer-review

1 Scopus citations

Abstract

This paper investigates the security model for authenticated key exchange protocols. We further enhance the enhanced Canetti-Krawczyk (eCK) model by introducing a notion called strong key compromise impersonation (SKCI) resilience which is first identified in this paper. SKCI resilience guarantees that the adversary cannot masquerade as another party B to communicate with party A even if the static private key and the ephemeral private key of party A are compromised. We point out that the three-pass authenticated key exchange protocol generically transformed from the two-pass one secure in the eCK model cannot resist the SKCI attack. Finally, we introduce a new authenticated key exchange protocol SIG-DH⁺ and prove that it satisfies our new definition.

Original language	English
Pages (from-to)	1130-1136
Number of pages	7
Journal	Security and Communication Networks
Volume	4
Issue number	10
DOIs	https://doi.org/10.1002/sec.238
State	Published - Oct 2011
Externally published	Yes

Keywords

Authenticated key exchange
ECK model
Freshness definition
Random oracle
SKCI resilience

Access to Document

10.1002/sec.238

Cite this

@article{3460ddc2ceea499cae02c80be3bab098,

title = "Authenticated key exchange protocol with enhanced freshness properties",

abstract = "This paper investigates the security model for authenticated key exchange protocols. We further enhance the enhanced Canetti-Krawczyk (eCK) model by introducing a notion called strong key compromise impersonation (SKCI) resilience which is first identified in this paper. SKCI resilience guarantees that the adversary cannot masquerade as another party B to communicate with party A even if the static private key and the ephemeral private key of party A are compromised. We point out that the three-pass authenticated key exchange protocol generically transformed from the two-pass one secure in the eCK model cannot resist the SKCI attack. Finally, we introduce a new authenticated key exchange protocol SIG-DH+ and prove that it satisfies our new definition.",

keywords = "Authenticated key exchange, ECK model, Freshness definition, Random oracle, SKCI resilience",

author = "Hai Huang and Zhenfu Cao",

year = "2011",

month = oct,

doi = "10.1002/sec.238",

language = "英语",

volume = "4",

pages = "1130--1136",

journal = "Security and Communication Networks",

issn = "1939-0114",

publisher = "John Wiley and Sons Ltd",

number = "10",

}

TY - JOUR

T1 - Authenticated key exchange protocol with enhanced freshness properties

AU - Huang, Hai

AU - Cao, Zhenfu

PY - 2011/10

Y1 - 2011/10

N2 - This paper investigates the security model for authenticated key exchange protocols. We further enhance the enhanced Canetti-Krawczyk (eCK) model by introducing a notion called strong key compromise impersonation (SKCI) resilience which is first identified in this paper. SKCI resilience guarantees that the adversary cannot masquerade as another party B to communicate with party A even if the static private key and the ephemeral private key of party A are compromised. We point out that the three-pass authenticated key exchange protocol generically transformed from the two-pass one secure in the eCK model cannot resist the SKCI attack. Finally, we introduce a new authenticated key exchange protocol SIG-DH+ and prove that it satisfies our new definition.

AB - This paper investigates the security model for authenticated key exchange protocols. We further enhance the enhanced Canetti-Krawczyk (eCK) model by introducing a notion called strong key compromise impersonation (SKCI) resilience which is first identified in this paper. SKCI resilience guarantees that the adversary cannot masquerade as another party B to communicate with party A even if the static private key and the ephemeral private key of party A are compromised. We point out that the three-pass authenticated key exchange protocol generically transformed from the two-pass one secure in the eCK model cannot resist the SKCI attack. Finally, we introduce a new authenticated key exchange protocol SIG-DH+ and prove that it satisfies our new definition.

KW - Authenticated key exchange

KW - ECK model

KW - Freshness definition

KW - Random oracle

KW - SKCI resilience

UR - https://www.scopus.com/pages/publications/80053120729

U2 - 10.1002/sec.238

DO - 10.1002/sec.238

M3 - 文章

AN - SCOPUS:80053120729

SN - 1939-0114

VL - 4

SP - 1130

EP - 1136

JO - Security and Communication Networks

JF - Security and Communication Networks

IS - 10

ER -

Authenticated key exchange protocol with enhanced freshness properties

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this