Security proofs for an efficient password-based key exchange

Security proofs for an efficient password-based key exchange (2003)

Cached

Download Links

Other Repositories/Bibliography

DBLP

by E. Bresson , O. Chevassut , D. Pointcheval

Venue:	In ACM Conference on Computer Communications Security
Citations:	25 - 8 self

BibTeX

@INPROCEEDINGS{Bresson03securityproofs,
    author = {E. Bresson and O. Chevassut and D. Pointcheval},
    title = {Security proofs for an efficient password-based key exchange},
    booktitle = {In ACM Conference on Computer Communications Security},
    year = {2003},
    pages = {241--250},
    publisher = {ACM Press}
}

Years of Citing Articles

Bookmark

OpenURL

Abstract

Abstract. Password-based key exchange schemes are designed to provide entities communicating over a public network, and sharing a (short) password only, with a session key (e.g, the key is used for data integrity and/or confidentiality). The focus of the present paper is on the analysis of very efficient schemes that have been proposed to the IEEE P1363 Standard working group on password-based authenticated key-exchange methods, but for which actual security was an open problem. We analyze the AuthA key exchange scheme and give a complete proof of its security. Our analysis shows that the AuthA protocol and its multiple modes of operation are provably secure under the computational Diffie-Hellman intractability assumption, in both the random-oracle and the ideal-cipher models. 1

Citations

1130	Random oracles are practical: A paradigm for designing efficient protocols - Bellare, Rogaway - 1993
484	Universally composable security: A new paradigm for cryptographic protocols - Canetti - 2005
394	A practical public key cryptosystem provably secure against adaptive chosen ciphertext attack - Cramer, Shoup - 1998
388	Entity authentication and key distribution - Bellare, Rogaway - 1994
293	Encrypted key exchange: Password-based protocols secure against dictionary attacks - Bellovin, Merritt - 1992
276	Intercepting mobile communications: The insecurity of 802.11” [Online]. Available: http://www.isaac.cs.berkeley.edu/isaac/wep-faq.html - Borisov, Goldberg, et al.
252	Authenticated key exchange secure against dictionary attacks - Bellare, Pointcheval, et al. - 2000
185	Provably secure session key distribution---the three party case - Bellare, Rogaway - 1995
125	Provably secure password authenticated key exchange using Diffie-Hellman - Boyko, MacKenzie, et al. - 2000
117	Augmented encrypted key exchange: A password-based protocol secure against dictionary attacks and password le compromise - Bellovin, Merritt - 1994
86	Tweakable block ciphers - Liskov, Rivest, et al. - 2002
75	Key-Privacy in Public-Key Encryption - Bellare, Boldyreva, et al. - 2001
74	E cient password-authenticated key exchange using human-memorable passwords - Katz, Ostrovsky, et al. - 2001
70	Session-key generation using human passwords only - Goldreich, Lindell - 2001
65	On formal models for secure key exchange - Shoup - 1999
50	A framework for password-based authenticated key exchange - Gennaro, Lindell - 2003
48	Universal composition with joint state - Canetti, Rabin - 2003
42	The AuthA Protocol for Password-Based Authenticated Key Exchange - Bellare, Rogaway - 2000
30	Universally composable password-based key exchange - Canetti, Halevi, et al. - 2005
27	Group Diffie-Hellman Key Exchange Secure against Dictionary Attacks - Bresson, Chevassut, et al. - 2002
26	The PAK suite: Protocols for Password-Authenticated Key Exchange", DIMACS - MacKenzie - 2002
24	Secure password-based cipher suite for TLS - Steiner, Buhler, et al.
24	Simple Password-Based Encrypted Key Exchange Protocols - Abdalla, Pointcheval - 2005
16	Authenticated encryption in SSH: provably fixing the SSH binary packet protocol - Bellare, Kohno, et al.
12	Elliptic curve based password authenticated key exchange protocols - Boyd, Montague, et al.
11	Forward secrecy in password-only key exchange protocols - Katz, Ostrovsky, et al. - 2002
6	Using SRP for TLS authentication - Taylor, Wu, et al. - 2006
6	1363-2000. Standard Specifications for Public Key Cryptography. http://grouper.ieee.org/groups/1363 - Standard - 2000
5	A method for making password-based key exchange resilient to server compromise - Gentry, MacKenzie, et al. - 2006
5	Hofheinz and Jörn Müller-Quade. Universally composable commitments using random oracles - Dennis - 2004
1	Authenticated key exchange secure against dictionary attacks - Rogaway
1	ECC cipher suites for TLS. TLS Working Group - Blake-Wilson, Gupta, et al.
1	Provably secure password-authenticated key exchange using Diffie-Hellman - McKenzie, Patel - 2000
1	Encrypted key exchange using mask generation function - Bresson, Chevassut, et al.
1	Using SRP for TLS authentication. Internet Draft, November 2002. [3] A Complements for the Proof of Theorem 1 A.1 Proof of Lemma 2 Game G7: In this game, we compute the authenticator skU and the session key skS using the private oracles H2 and H3 as depic - Taylor
1	ECC Cipher Suites for TLS, February 2002 - Blake-Wilson, Gupta, et al.