Simulatable certificateless two-party authenticated key agreement protocol

Lei Zhang; Futai Zhang; Qianhong Wu; Josep Domingo-Ferrer

doi:10.1016/j.ins.2009.11.036

Simulatable certificateless two-party authenticated key agreement protocol

Lei Zhang, Futai Zhang, Qianhong Wu, Josep Domingo-Ferrer

Research output: Contribution to journal › Article › peer-review

84 Scopus citations

Abstract

Key agreement (KA) allows two or more users to negotiate a secret session key among them over an open network. Authenticated key agreement (AKA) is a KA protocol enhanced to prevent active attacks. AKA can be achieved using a public-key infrastructure (PKI) or identity-based cryptography. However, the former suffers from a heavy certificate management burden while the latter is subject to the so-called key escrow problem. Recently, certificateless cryptography was introduced to mitigate these limitations. In this paper, we first propose a security model for AKA protocols using certificateless cryptography. Following this model, we then propose a simulatable certificateless two-party AKA protocol. Security is proven under the standard computational Diffie-Hellman (CDH) and bilinear Diffie-Hellman (BDH) assumptions. Our protocol is efficient and practical, because it requires only one pairing operation and five multiplications by each party.

Original language	English
Pages (from-to)	1020-1030
Number of pages	11
Journal	Information Sciences
Volume	180
Issue number	6
DOIs	https://doi.org/10.1016/j.ins.2009.11.036
State	Published - 15 Mar 2010
Externally published	Yes

Keywords

Authenticated key agreement
Certificateless cryptography
Information security
Protocol design
Provable security

Access to Document

10.1016/j.ins.2009.11.036

Cite this

@article{1fccd433c10a4f5ca5004819aec39d16,

title = "Simulatable certificateless two-party authenticated key agreement protocol",

abstract = "Key agreement (KA) allows two or more users to negotiate a secret session key among them over an open network. Authenticated key agreement (AKA) is a KA protocol enhanced to prevent active attacks. AKA can be achieved using a public-key infrastructure (PKI) or identity-based cryptography. However, the former suffers from a heavy certificate management burden while the latter is subject to the so-called key escrow problem. Recently, certificateless cryptography was introduced to mitigate these limitations. In this paper, we first propose a security model for AKA protocols using certificateless cryptography. Following this model, we then propose a simulatable certificateless two-party AKA protocol. Security is proven under the standard computational Diffie-Hellman (CDH) and bilinear Diffie-Hellman (BDH) assumptions. Our protocol is efficient and practical, because it requires only one pairing operation and five multiplications by each party.",

keywords = "Authenticated key agreement, Certificateless cryptography, Information security, Protocol design, Provable security",

author = "Lei Zhang and Futai Zhang and Qianhong Wu and Josep Domingo-Ferrer",

year = "2010",

month = mar,

day = "15",

doi = "10.1016/j.ins.2009.11.036",

language = "英语",

volume = "180",

pages = "1020--1030",

journal = "Information Sciences",

issn = "0020-0255",

publisher = "Elsevier Inc.",

number = "6",

}

TY - JOUR

T1 - Simulatable certificateless two-party authenticated key agreement protocol

AU - Zhang, Lei

AU - Zhang, Futai

AU - Wu, Qianhong

AU - Domingo-Ferrer, Josep

PY - 2010/3/15

Y1 - 2010/3/15

N2 - Key agreement (KA) allows two or more users to negotiate a secret session key among them over an open network. Authenticated key agreement (AKA) is a KA protocol enhanced to prevent active attacks. AKA can be achieved using a public-key infrastructure (PKI) or identity-based cryptography. However, the former suffers from a heavy certificate management burden while the latter is subject to the so-called key escrow problem. Recently, certificateless cryptography was introduced to mitigate these limitations. In this paper, we first propose a security model for AKA protocols using certificateless cryptography. Following this model, we then propose a simulatable certificateless two-party AKA protocol. Security is proven under the standard computational Diffie-Hellman (CDH) and bilinear Diffie-Hellman (BDH) assumptions. Our protocol is efficient and practical, because it requires only one pairing operation and five multiplications by each party.

AB - Key agreement (KA) allows two or more users to negotiate a secret session key among them over an open network. Authenticated key agreement (AKA) is a KA protocol enhanced to prevent active attacks. AKA can be achieved using a public-key infrastructure (PKI) or identity-based cryptography. However, the former suffers from a heavy certificate management burden while the latter is subject to the so-called key escrow problem. Recently, certificateless cryptography was introduced to mitigate these limitations. In this paper, we first propose a security model for AKA protocols using certificateless cryptography. Following this model, we then propose a simulatable certificateless two-party AKA protocol. Security is proven under the standard computational Diffie-Hellman (CDH) and bilinear Diffie-Hellman (BDH) assumptions. Our protocol is efficient and practical, because it requires only one pairing operation and five multiplications by each party.

KW - Authenticated key agreement

KW - Certificateless cryptography

KW - Information security

KW - Protocol design

KW - Provable security

UR - https://www.scopus.com/pages/publications/73149101252

U2 - 10.1016/j.ins.2009.11.036

DO - 10.1016/j.ins.2009.11.036

M3 - 文章

AN - SCOPUS:73149101252

SN - 0020-0255

VL - 180

SP - 1020

EP - 1030

JO - Information Sciences

JF - Information Sciences

IS - 6

ER -

Simulatable certificateless two-party authenticated key agreement protocol

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this