A note on leakage-resilient authenticated key exchange

Author

Chun, Ji Young ; Hwang, Jung Yeon ; Lee, Dong Hoon

Author_Institution

Grad. Sch. of Inf. Manage. & Security, Korea Univ., Seoul, South Korea

Volume

8

Issue

5

fYear

2009

fDate

5/1/2009 12:00:00 AM

Firstpage

2274

Lastpage

2279

Abstract

Fathi et al. recently proposed a leakage-resilient authenticated key exchange protocol for a server-client model in mobility environment over wireless links. In the paper, we address flaws in a hash function used in the protocol. The direct use of the hash function cannot guarantee the security of the protocol. We also point out that a combination of the hash function and the RSA cryptosystem in the protocol may not work securely. To remedy these problems, we improve upon the protocol by modifying the hash function correctly.

Keywords

client-server systems; cryptographic protocols; message authentication; mobile radio; public key cryptography; telecommunication security; RSA cryptosystem; hash function; leakage-resilient authenticated key exchange protocol; mobility environment; server-client model; wireless links; Authentication; Authorization; Communication system security; Cryptography; Information security; Mobile communication; Public key; Telecommunication network reliability; Wireless application protocol; Wireless communication; Password; authentication; e-residue attack; key exchange; leakage-resilience; off-line dictionary attack;

fLanguage

English

Journal_Title

Wireless Communications, IEEE Transactions on

Publisher

ieee

ISSN

1536-1276

Type

jour

DOI

10.1109/TWC.2009.080693

Filename

4927438