Efficient verifier-based password-authenticated key exchange in the three-party setting

Jeong Ok Kwon; Ik Rae Jeong; Kouichi Sakurai; Dong Hoon Lee

doi:10.1016/j.csi.2006.12.002

Efficient verifier-based password-authenticated key exchange in the three-party setting

Jeong Ok Kwon, Ik Rae Jeong, Kouichi Sakurai, Dong Hoon Lee

School of Cybersecurity

Research output: Contribution to journal › Review article › peer-review

32 Citations (Scopus)

Abstract

In the last few years, researchers have extensively studied the password-authenticated key exchange (PAKE) in the three-party setting. The fundamental security goal of PAKE is security against dictionary attacks. The protocols for verifier-based PAKE are additionally required to be secure against server compromise. Some verifier-based PAKE schemes in the three-party setting have been suggested to solve the server compromise problem. Unfortunately, the protocols are vulnerable to an off-line dictionary attack. In this paper, we present an efficient verifier-based PAKE protocol for three-parties that is secure against known-key attacks and provides forward secrecy. To the best of our knowledge, the proposed protocol is the first secure three-party verifier-based PAKE protocol in the literature.

Original language	English
Pages (from-to)	513-520
Number of pages	8
Journal	Computer Standards and Interfaces
Volume	29
Issue number	5
DOIs	https://doi.org/10.1016/j.csi.2006.12.002
Publication status	Published - 2007 Jul

Keywords

Cryptology
Dictionary attack
Password-authenticated key exchange
Verifier-based

ASJC Scopus subject areas

Software
Hardware and Architecture
Law

Access to Document

10.1016/j.csi.2006.12.002

Cite this

@article{2f0d43f518264dd08ed2055cddc0bfa9,

title = "Efficient verifier-based password-authenticated key exchange in the three-party setting",

abstract = "In the last few years, researchers have extensively studied the password-authenticated key exchange (PAKE) in the three-party setting. The fundamental security goal of PAKE is security against dictionary attacks. The protocols for verifier-based PAKE are additionally required to be secure against server compromise. Some verifier-based PAKE schemes in the three-party setting have been suggested to solve the server compromise problem. Unfortunately, the protocols are vulnerable to an off-line dictionary attack. In this paper, we present an efficient verifier-based PAKE protocol for three-parties that is secure against known-key attacks and provides forward secrecy. To the best of our knowledge, the proposed protocol is the first secure three-party verifier-based PAKE protocol in the literature.",

keywords = "Cryptology, Dictionary attack, Password-authenticated key exchange, Verifier-based",

author = "Kwon, {Jeong Ok} and Jeong, {Ik Rae} and Kouichi Sakurai and Lee, {Dong Hoon}",

note = "Funding Information: This research was supported by the MIC (Ministry of Information and Communication), Korea, under the ITRC (Information Technology Research Center) support program supervised by the IITA (Institute of Information Technology Advancement) (IITA-2006-(C1090-0603-0025)). ",

year = "2007",

month = jul,

doi = "10.1016/j.csi.2006.12.002",

language = "English",

volume = "29",

pages = "513--520",

journal = "Computer Standards and Interfaces",

issn = "0920-5489",

publisher = "Elsevier",

number = "5",

}

TY - JOUR

T1 - Efficient verifier-based password-authenticated key exchange in the three-party setting

AU - Kwon, Jeong Ok

AU - Jeong, Ik Rae

AU - Sakurai, Kouichi

AU - Lee, Dong Hoon

N1 - Funding Information: This research was supported by the MIC (Ministry of Information and Communication), Korea, under the ITRC (Information Technology Research Center) support program supervised by the IITA (Institute of Information Technology Advancement) (IITA-2006-(C1090-0603-0025)).

PY - 2007/7

Y1 - 2007/7

N2 - In the last few years, researchers have extensively studied the password-authenticated key exchange (PAKE) in the three-party setting. The fundamental security goal of PAKE is security against dictionary attacks. The protocols for verifier-based PAKE are additionally required to be secure against server compromise. Some verifier-based PAKE schemes in the three-party setting have been suggested to solve the server compromise problem. Unfortunately, the protocols are vulnerable to an off-line dictionary attack. In this paper, we present an efficient verifier-based PAKE protocol for three-parties that is secure against known-key attacks and provides forward secrecy. To the best of our knowledge, the proposed protocol is the first secure three-party verifier-based PAKE protocol in the literature.

AB - In the last few years, researchers have extensively studied the password-authenticated key exchange (PAKE) in the three-party setting. The fundamental security goal of PAKE is security against dictionary attacks. The protocols for verifier-based PAKE are additionally required to be secure against server compromise. Some verifier-based PAKE schemes in the three-party setting have been suggested to solve the server compromise problem. Unfortunately, the protocols are vulnerable to an off-line dictionary attack. In this paper, we present an efficient verifier-based PAKE protocol for three-parties that is secure against known-key attacks and provides forward secrecy. To the best of our knowledge, the proposed protocol is the first secure three-party verifier-based PAKE protocol in the literature.

KW - Cryptology

KW - Dictionary attack

KW - Password-authenticated key exchange

KW - Verifier-based

UR - http://www.scopus.com/inward/record.url?scp=34248672528&partnerID=8YFLogxK

U2 - 10.1016/j.csi.2006.12.002

DO - 10.1016/j.csi.2006.12.002

M3 - Review article

AN - SCOPUS:34248672528

SN - 0920-5489

VL - 29

SP - 513

EP - 520

JO - Computer Standards and Interfaces

JF - Computer Standards and Interfaces

IS - 5

ER -

Efficient verifier-based password-authenticated key exchange in the three-party setting

Abstract

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this