An improved provably secure three-party key exchange protocol

Author

Tsaur, M.-J. ; Wei-Chi Ku ; Jenn-Wei Lin ; Yu-Ze Shen

Author_Institution

Grad. Inst. of Appl. Sci. & Eng., Fu Jen Catholic Univ., Taipei, Taiwan

Volume

2

fYear

2010

fDate

16-18 April 2010

Abstract

Recently, Chung and Ku showed that the S-3PAKE (simple three-party password-based authenticated key exchange) protocol proposed by Lu and Cao is vulnerable to an impersonation-of-initiator attack, an impersonation-of-responder attack, and a man-in-the-middle attack, and then proposed an enhanced version. Unfortunately, Phan et al. showed that Chung-Ku´s protocol still cannot resist two password guessing attacks. In this paper, we propose an improved protocol that can resist password guessing attacks. Furthermore, we offer a formally provable security theorem to evaluate the AKE security of the improved protocol.

Keywords

cryptographic protocols; message authentication; S-3PAKE; impersonation-of-initiator attack; impersonation-of-responder attack; man-in-the-middle attack; password guessing attack; simple three-party password-based authenticated key exchange protocol; Computer science; Context modeling; Cryptography; Helium; Information science; Protocols; Public key; Resists; Security; authenticated key exchange; password guessing attack; provable security;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Engineering and Technology (ICCET), 2010 2nd International Conference on

Conference_Location

Chengdu

Print_ISBN

978-1-4244-6347-3

Type

conf

DOI

10.1109/ICCET.2010.5485332

Filename

5485332