Title :
Stronger password-base authenticated key exchange protocols
Author :
Chen, Maobian ; Wang, Xiufeng
Author_Institution :
Sontan Coll., Guangzhou Univ., Guangzhou
Abstract :
Password authenticated key exchange protocols (PAKE) are designed to be secure over insecure networks even the users pick up a human-memorable password from a small space. Although a great deal of research of PAKE has been proposed and many formal definitions and settings in the area of AKE have been defined, few formal definitions and settings on PAKE are proposed. We, in this paper, extend and modify existing models and settings of AKE to the ones of PAKE so that our definitions can capture more realistic attacks on PAKE protocols than previous definitions and offer more powers to an adversary to break the protocols. In addition, we show that the protocols proposed by Halevi and Krawczyk are insecure in our definitions. After analyzing the attacks against their protocols, we extend and modify their protocols so that the extended protocols are secure in our definitions. Besides, our protocols can resist password exposure even if the long-term key is compromised.
Keywords :
cryptographic protocols; message authentication; data security; human-memorable password; password authenticated key exchange protocols; Authentication; Cryptography; Dictionaries; Educational institutions; Electrical capacitance tomography; Petroleum; Protocols; Public key; Resists; Security; Password; authentication; key exchange; protocols; security;
Conference_Titel :
Communication Technology, 2008. ICCT 2008. 11th IEEE International Conference on
Conference_Location :
Hangzhou
Print_ISBN :
978-1-4244-2250-0
Electronic_ISBN :
978-1-4244-2251-7
DOI :
10.1109/ICCT.2008.4716244
