Efficient three-party key exchange protocols with round efficiency

被引:12
作者
Youn, Taek-Young [1 ]
Kang, Eun Sook [2 ]
Lee, Changhoon [3 ]
机构
[1] Elect & Telecommun Res Inst, Cryptog Res Team, Taejon 305700, South Korea
[2] Korea Univ, Dept Math, Yeongi Gun, Chungcheongnam, South Korea
[3] Hanshin Univ, Sch Comp Engn, Osan Si, Gyeonggi Do, South Korea
来源
TELECOMMUNICATION SYSTEMS | 2013年 / 52卷 / 02期
关键词
Cryptanalysis; Password; Key exchange; Three-party setting; Password guessing attack;
D O I
10.1007/s11235-011-9649-3
中图分类号
TN [电子技术、通信技术];
学科分类号
0809 ;
摘要
Recently, Guo et al. discovered some security flaws of the simple three-party key exchange protocol proposed by Lu and Cao, and proposed an improved protocol. Independently, Chung and Ku also showed some weaknesses of Lu and Cao's protocol, and provided an improved protocol. In this paper, we review some insecurity of Lu and Cao's protocol and analyze two improved protocols proposed by Guo et al. and Chung and Ku. Then we show that the protocols are still insecure. They are vulnerable to an adversary who performs an off-line password guessing attack. We provide a countermeasure by performing detailed analysis on the security flaws in two improved protocols. We also propose a secure three-party password-authenticated key exchange protocol which requires three rounds.
引用
收藏
页码:1367 / 1376
页数:10
相关论文
共 50 条
  • [21] Cryptanalysis of an efficient three-party password-based key exchange scheme
    Simplicio, Marcos A., Jr.
    Sakuragui, Rony R. M.
    INTERNATIONAL JOURNAL OF COMMUNICATION SYSTEMS, 2012, 25 (11) : 1443 - 1449
  • [22] Three weaknesses in a simple three-party key exchange protocol
    Chung, Hao-Rung
    Ku, Wei-Chi
    INFORMATION SCIENCES, 2008, 178 (01) : 220 - 229
  • [23] A PRACTICAL THREE-PARTY AUTHENTICATED KEY EXCHANGE PROTOCOL
    Lo, Nai Wei
    Yeh, Kuo-Hui
    INTERNATIONAL JOURNAL OF INNOVATIVE COMPUTING INFORMATION AND CONTROL, 2010, 6 (06): : 2469 - 2483
  • [24] Efficient three-party authentication and key agreement protocols resistant to password guessing attacks
    Yeh, HT
    Sun, HM
    Hwang, T
    JOURNAL OF INFORMATION SCIENCE AND ENGINEERING, 2003, 19 (06) : 1059 - 1070
  • [25] Two-Round Password-Only Authenticated Key Exchange in the Three-Party Setting
    Nam, Junghyun
    Choo, Kim-Kwang Raymond
    Han, Sangchul
    Paik, Juryon
    Won, Dongho
    SYMMETRY-BASEL, 2015, 7 (01): : 105 - 124
  • [26] Analysis of Two Pairing-based Three-party Password Authenticated Key Exchange Protocols
    Phan, Raphael C. -W.
    Yau, Wei-Chuen
    Goi, Bok-Min
    NSS: 2009 3RD INTERNATIONAL CONFERENCE ON NETWORK AND SYSTEM SECURITY, 2009, : 102 - +
  • [27] Cryptanalysis of simple three-party key exchange protocol
    Guo, Hua
    Li, Zhoujun
    Mu, Yi
    Zhang, Xiyong
    COMPUTERS & SECURITY, 2008, 27 (1-2) : 16 - 21
  • [28] A Security Patch for a Three-Party Key Exchange Protocol
    ZHAO Jianjie1
    2.Department of Computer Science and Engineering
    WuhanUniversityJournalofNaturalSciences, 2010, 15 (03) : 242 - 246
  • [29] Cryptanalysis of a Simple Three-party Key Exchange Protocol
    He, Debiao
    Chen, Jianhua
    Hu, Jin
    INFORMATICA-JOURNAL OF COMPUTING AND INFORMATICS, 2010, 34 (03): : 337 - 339
  • [30] Robust biometric-based three-party authenticated key establishment protocols
    Yoon, Eun-Jun
    Yoo, Kee-Young
    INTERNATIONAL JOURNAL OF COMPUTER MATHEMATICS, 2011, 88 (06) : 1144 - 1157
12345