Title :
Cryptanalysis of Lu et al.´s Password-Based Authenticated Key Agreement Protocol
Author_Institution :
Dept. of Electron., Inf. Eng. Univ., Zhengzhou, China
Abstract :
Recently, Lu et al. presented an enhanced authenticated key agreement protocol based on elliptic curves cryptography and included their protocol in 3GPP2 specifications to improve the security of A-Key distribution. In this paper, we first show the proposed protocol can´t resist the offline password guessing attack, and then present an enhanced protocol to remedy the security loopholes. On the other hand, through this work, we also hope to contribute towards a better understanding of the importance and necessity of including the key derivation step in key agreement protocols.
Keywords :
cryptographic protocols; public key cryptography; telecommunication security; 3GPP2 specifications; A-key distribution; cryptanalysis; elliptic curves cryptography; enhanced authenticated key agreement protocol; key agreement protocols; key derivation step; offline password guessing attack; password-based authenticated key agreement protocol; security loopholes; Authentication; Communication system security; Cryptographic protocols; Dictionaries; Elliptic curve cryptography; Elliptic curves; Information technology; Resists; Wireless application protocol; Wireless communication;
Conference_Titel :
Multimedia and Information Technology (MMIT), 2010 Second International Conference on
Conference_Location :
Kaifeng
Print_ISBN :
978-0-7695-4008-5
Electronic_ISBN :
978-1-4244-6602-3
DOI :
10.1109/MMIT.2010.81
