Efficient verifier-based password-authenticated key exchange in the three-party setting

Jeong Ok Kwon, Ik Rae Jeong, Kouichi Sakurai, Dong Hoon Lee

Research output: Contribution to journalReview articlepeer-review

33 Citations (Scopus)

Abstract

In the last few years, researchers have extensively studied the password-authenticated key exchange (PAKE) in the three-party setting. The fundamental security goal of PAKE is security against dictionary attacks. The protocols for verifier-based PAKE are additionally required to be secure against server compromise. Some verifier-based PAKE schemes in the three-party setting have been suggested to solve the server compromise problem. Unfortunately, the protocols are vulnerable to an off-line dictionary attack. In this paper, we present an efficient verifier-based PAKE protocol for three-parties that is secure against known-key attacks and provides forward secrecy. To the best of our knowledge, the proposed protocol is the first secure three-party verifier-based PAKE protocol in the literature.

Original languageEnglish
Pages (from-to)513-520
Number of pages8
JournalComputer Standards and Interfaces
Volume29
Issue number5
DOIs
Publication statusPublished - 2007 Jul

Bibliographical note

Funding Information:
This research was supported by the MIC (Ministry of Information and Communication), Korea, under the ITRC (Information Technology Research Center) support program supervised by the IITA (Institute of Information Technology Advancement) (IITA-2006-(C1090-0603-0025)).

Keywords

  • Cryptology
  • Dictionary attack
  • Password-authenticated key exchange
  • Verifier-based

ASJC Scopus subject areas

  • Software
  • Hardware and Architecture
  • Law

Fingerprint

Dive into the research topics of 'Efficient verifier-based password-authenticated key exchange in the three-party setting'. Together they form a unique fingerprint.

Cite this