Secure Password-Based Cipher Suite for TLS

Secure Password-Based Cipher Suite for TLS (2001)

Cached

Download Links

Other Repositories/Bibliography

DBLP

by Michael Steiner , Peter Buhler , Thomas Eirich , Michael Waidner

Venue:	PROCEEDINGS OF NETWORK AND DISTRIBUTED SYSTEMS SECURITY SYMPOSIUM
Citations:	24 - 1 self

BibTeX

@INPROCEEDINGS{Steiner01securepassword-based,
    author = {Michael Steiner and Peter Buhler and Thomas Eirich and Michael Waidner},
    title = {Secure Password-Based Cipher Suite for TLS},
    booktitle = {PROCEEDINGS OF NETWORK AND DISTRIBUTED SYSTEMS SECURITY SYMPOSIUM},
    year = {2001},
    pages = {134--157},
    publisher = {}
}

Years of Citing Articles

Bookmark

OpenURL

Abstract

SSL is the de-facto standard today for securing end-to-end transport on the Internet. While the protocol itself seems rather secure, there are a number of risks that lurk in its use, e.g., in web banking. However, the adoption of password-based key-exchange protocols can overcome some of these problems. We propose the integration of such a protocol (DH-EKE) in the TLS protocol, the standardization of SSL by IETF. The resulting protocol provides secure mutual authentication and key establishment over an insecure channel. It does not have to resort to a PKI or keys and certicates stored on the users computer. Additionally, its integration in TLS is as minimal and non-intrusive as possible.

Citations

2292	New directions in cryptography - Diffie, Hellmen - 1976
2057	Handbook of Applied Cryptography - Menezes, Oorschot, et al. - 1997
1130	Random oracles are practical: A paradigm for designing efficient protocols - Bellare, Rogaway - 1993
327	The TLS protocol version 1.0 - DIERKS, ALLEN - 1999
293	Encrypted key exchange: Password-based protocols secure against dictionary attacks - Bellovin, Merritt - 1992
252	Authenticated key exchange secure against dictionary attacks - Bellare, Pointcheval, et al. - 2000
198	Chosen ciphertext attacks against protocols based on the RSA encryption standard - Bleichenbacher - 1998
193	A modular approach to the design and analysis of authentication and key exchange protocols (extended abstract - Bellare, Canetti, et al. - 1998
185	Provably secure session key distribution---the three party case - Bellare, Rogaway - 1995
177	Password security: a case history - Morris, Thompson - 1979
176	Optimal asymmetric encryption – how to encrypt with RSA - Bellare, Rogaway - 1994
155	The secure remote password protocol - Wu - 1998
142	Strong password-only authenticated key exchange - Jablon - 1996
141	The Kerberos Network Authentication Service (V5 - Kohl, Neuman - 1993
125	Provably secure password authenticated key exchange using Diffie-Hellman - Boyko, MacKenzie, et al. - 2000
117	Augmented encrypted key exchange: A password-based protocol secure against dictionary attacks and password le compromise - Bellovin, Merritt - 1994
109	Limitations of the Kerberos authentication system - Bellovin, Merritt - 1991
107	Protecting poorly chosen secrets from guessing attacks - Gong, Lomas, et al. - 1993
94	H.: Public-key cryptography and password protocols - Halevi, Krawczyk - 1999
79	Analysis of the ssl 3.0 protocol - Wagner, Schneier - 1996
71	Finite-State Analysis of SSL 3.0 - Mitchell, Shmatikov, et al. - 1998
56	A key recovery attack on discrete log-based schemes using a prime order subgroup - Lim, Lee - 1997
56	Open Key Exchange: How to Defeat Dictionary Attacks Without Encrypting Public Keys - Lucks - 1997
51	Refinement and Extension of Encrypted Key Exchange - Steiner, Tsudik, et al. - 1995
49	The SSL protocol version 3.0. Internet draft (draft-freier-ssl-version3-02.txt), Network Working Group - Freier, Karlton, et al. - 1996
49	A real-world analysis of Kerberos password security,” presented at the Network and Distributed System Security Symp - Wu
42	The AuthA Protocol for Password-Based Authenticated Key Exchange - Bellare, Rogaway - 2000
41	Password-Authenticated Key Exchange Based on RSA - MacKenzie, Patel, et al. - 1976
37	Number-Theoretic Attacks on Secure Password Schemes - Patel - 1997
35	Extended Password Key Exchange Protocols Immune to Dictionary Attack - Jablon - 1997
26	Ciphers with Arbitrary Finite Domains - Black, Rogaway - 2002
24	Improving system security via proactive password checking - Bishop, Klein - 1995
23	Fortifying key negotiation schemes with poorly chosen passwords - Anderson, Lomas - 1994
21	WWW electronic commerce and Java Trojan horses - Tygar, Whitten - 1996
20	Fast Generation of Prime Numbers and Secure Public-Key Cryptographic Parameters - Maurer - 1995
19	Addition of Kerberos Cipher Suites to Transport Layer Security (TLS)", RFC 2712 - Medvinsky, Hur - 1999
10	Compact Representation of Elliptic Curve Points over F2n - Seroussi - 1998
6	Password-based authenticated key exchange using collisionful hash functions - Bakhtiari, Safavi-Naini, et al. - 1996
2	PKCS #5: Password-based cryptography standard. Version 2.0 - RSA - 1999
1	Association for Cryptologic Research - International - 1995
1	Exploring Kerberos, the protocol for distributed security in Windows 2000 - Chappell - 1999
1	PKCS #1: RSA cryptography specifications. Technical note (Sept.), RSA Laboratories. Version 2.0 - Kaliski, Staddon - 1998
1	On formal models for secure key exchange. Research Report RZ 3120 (#93166) (April), IBM Research. A revised version 4, dated November 15 - Shoup - 1999