Cryptanalysis and improvement of password authenticated key exchange scheme between clients with different passwords

Jeeyeon Kim, Seung-Joo Kim, Jin Kwak, Dongho Won

Research output: Contribution to journalArticle

39 Citations (Scopus)

Abstract

In ICICS'02, Byun et al. presented a new client to client password-authenticated key exchange(C2C-PAKE) protocol in a crossrealm setting. In their paper, they argued that their C2C-PAKE protocol is secure against the Denning-Sacco attack of an insider adversary. In this paper, we show that, contrary to their arguments, the C2C-PAKE protocol is vulnerable to the Denning-Sacco attack by an insider adversary. And we also present the modified protocol to solve this problem.

Original languageEnglish
Pages (from-to)895-902
Number of pages8
JournalLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume3043
Publication statusPublished - 2004 Dec 1
Externally publishedYes

ASJC Scopus subject areas

  • Computer Science(all)
  • Biochemistry, Genetics and Molecular Biology(all)
  • Theoretical Computer Science

Fingerprint Dive into the research topics of 'Cryptanalysis and improvement of password authenticated key exchange scheme between clients with different passwords'. Together they form a unique fingerprint.

  • Cite this