Abstract :
Based on revisiting the RYY+ Identitybased (ID-Based) key agreement protocol, we find it’s vulnerable to Intermediate results leakage (IRL) and Keycompromise impersonation (KCI) attack. A novel protocol called RYY++ is proposed to make up for its deficiencies. Our protocol follows the Full dual exponential challenge response (FDCR-1) scheme to ensure the signature change every time, so the master public key of Private key generator (PKG) joined in signature generation can guarantee two parties trust each other. The RYY++ protocol is also proven to be secure in the Strengthened extended Canetti– Krawczyk (SeCK) model which provides better support for adversary’s query and has an advantage over most existing protocols on security and efficiency.
