Weakness in a RSA-based password authenticated key exchange protocol

Taek Young Youn; Young Ho Park; Changhan Kim; Jongin Lim

doi:10.1016/j.ipl.2008.06.002

Weakness in a RSA-based password authenticated key exchange protocol

Taek Young Youn, Young Ho Park, Changhan Kim, Jongin Lim

School of Cybersecurity

Research output: Contribution to journal › Article › peer-review

6 Citations (Scopus)

Abstract

Recently, an efficient password-authenticated key exchange protocol based on RSA has been proposed by Park et al. with formal security proof. In this letter, we analyze their protocol, and show that, unfortunately, it is insecure against an adversary who performs a dictionary attack.

Original language	English
Pages (from-to)	339-342
Number of pages	4
Journal	Information Processing Letters
Volume	108
Issue number	6
DOIs	https://doi.org/10.1016/j.ipl.2008.06.002
Publication status	Published - 2008 Nov 30

Keywords

Cryptography
Dictionary attack
Key exchange
Password
RSA

ASJC Scopus subject areas

Theoretical Computer Science
Signal Processing
Information Systems
Computer Science Applications

Access to Document

10.1016/j.ipl.2008.06.002

Cite this

@article{aaaf00ab634e4ee0ae9eec5f200d9a1f,

title = "Weakness in a RSA-based password authenticated key exchange protocol",

abstract = "Recently, an efficient password-authenticated key exchange protocol based on RSA has been proposed by Park et al. with formal security proof. In this letter, we analyze their protocol, and show that, unfortunately, it is insecure against an adversary who performs a dictionary attack.",

keywords = "Cryptography, Dictionary attack, Key exchange, Password, RSA",

author = "Youn, {Taek Young} and Park, {Young Ho} and Changhan Kim and Jongin Lim",

note = "Funding Information: ✩ This research was supported by the MKE (Ministry of Knowledge Economy), Korea, under the ITRC (Information Technology Research Center) support program supervised by the IITA (Institute of Information Technology Advancement) (IITA-2008-(C1090-0801-0025)). * Corresponding author. E-mail addresses: taekyoung@cist.korea.ac.kr (T.-Y. Youn), youngho@cybersejong.ac.kr (Y.-H. Park), chkim@semyung.ac.kr (C. Kim), jilim@korea.ac.kr (J. Lim).",

year = "2008",

month = nov,

day = "30",

doi = "10.1016/j.ipl.2008.06.002",

language = "English",

volume = "108",

pages = "339--342",

journal = "Information Processing Letters",

issn = "0020-0190",

publisher = "Elsevier",

number = "6",

}

TY - JOUR

T1 - Weakness in a RSA-based password authenticated key exchange protocol

AU - Youn, Taek Young

AU - Park, Young Ho

AU - Kim, Changhan

AU - Lim, Jongin

N1 - Funding Information: ✩ This research was supported by the MKE (Ministry of Knowledge Economy), Korea, under the ITRC (Information Technology Research Center) support program supervised by the IITA (Institute of Information Technology Advancement) (IITA-2008-(C1090-0801-0025)). * Corresponding author. E-mail addresses: taekyoung@cist.korea.ac.kr (T.-Y. Youn), youngho@cybersejong.ac.kr (Y.-H. Park), chkim@semyung.ac.kr (C. Kim), jilim@korea.ac.kr (J. Lim).

PY - 2008/11/30

Y1 - 2008/11/30

N2 - Recently, an efficient password-authenticated key exchange protocol based on RSA has been proposed by Park et al. with formal security proof. In this letter, we analyze their protocol, and show that, unfortunately, it is insecure against an adversary who performs a dictionary attack.

AB - Recently, an efficient password-authenticated key exchange protocol based on RSA has been proposed by Park et al. with formal security proof. In this letter, we analyze their protocol, and show that, unfortunately, it is insecure against an adversary who performs a dictionary attack.

KW - Cryptography

KW - Dictionary attack

KW - Key exchange

KW - Password

KW - RSA

UR - http://www.scopus.com/inward/record.url?scp=53049102457&partnerID=8YFLogxK

U2 - 10.1016/j.ipl.2008.06.002

DO - 10.1016/j.ipl.2008.06.002

M3 - Article

AN - SCOPUS:53049102457

SN - 0020-0190

VL - 108

SP - 339

EP - 342

JO - Information Processing Letters

JF - Information Processing Letters

IS - 6

ER -

Weakness in a RSA-based password authenticated key exchange protocol

Abstract

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this