• DocumentCode
    1836650
  • Title

    Efficient and Secure Cross-Realm Client-to-Client Password-Authenticated Key Exchange

  • Author

    Chuang, Po-Jen ; Liao, Yi-Ping

  • Author_Institution
    Dept. of Electr. Eng., Tamkang Univ. Tamsui, Taipei, Taiwan
  • fYear
    2012
  • fDate
    26-29 March 2012
  • Firstpage
    701
  • Lastpage
    708
  • Abstract
    To conduct secure communications in wireless networks, clients must create safer keys from the recorded less secure passwords -- known as Password-Authenticated Key Exchange (PAKE). As attacker capability has evolved quickly, PAKE protocols must progress with time to fight against possible attacks. This paper makes an analytical survey on current cross-realm client-to-client (C2C) PAKE protocols and based on the Smart Card Framework Agreement develops a new and stronger C2C PAKE protocol to deal with malicious attacks. The new protocol involves client passwords, Smart Card information and server private keys to build a security protection mechanism which maneuvers by Mod calculation, Asymmetric encryption and Diffie-Hellman operations and is able to maintain communication security even when client passwords and server private keys are snatched. To verify the security of various C2C PAKE protocols -- including ours, we employ Yoneyama´s Security Model which can verify even Key-Compromise Impersonation (KCI) and Leakage of Ephemeral Private (LEP) attacks. Cost comparisons -- covering calculation times and complexity -- are also provided. The results show that our protocol achieves notably better security at reasonable cost.
  • Keywords
    computer network security; cryptographic protocols; radio networks; smart cards; C2C PAKE protocols; Diffie-Hellman operations; KCI; LEP attacks; Mod calculation; asymmetric encryption; cross-realm client-to-client PAKE protocols; key-compromise impersonation; leakage of ephemeral private attacks; password-authenticated key exchange; secure communications; secure passwords; smart card framework agreement; wireless networks; Authentication; Encryption; Protocols; Resists; Servers; Smart cards; client-to-client password-authenticated key exchange (C2C PAKE); cross-realm; performance evaluation; security models; smart cards;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Advanced Information Networking and Applications (AINA), 2012 IEEE 26th International Conference on
  • Conference_Location
    Fukuoka
  • ISSN
    1550-445X
  • Print_ISBN
    978-1-4673-0714-7
  • Type

    conf

  • DOI
    10.1109/AINA.2012.128
  • Filename
    6184938