One-round protocol for two-party verifier-based password-authenticated key exchange

Jeong Ok Kwon, Kouichi Sakurai, Dong Hoon Lee

Research output: Chapter in Book/Report/Conference proceedingConference contribution

5 Citations (Scopus)

Abstract

Password-authenticated key exchange (PAKE) for two-party allows a client and a server communicating over a public network to share a session key using a human-memorable password only. PAKE protocols can be served as basic building blocks for constructing secure, complex, and higher-level protocols which were initially built upon the Transport Layer Security (TLS) protocol. In this paper, we propose a provably-secure verifier-based PAKE protocol well suited with the TLS protocol which requires only a single round. The protocol is secure against attacks using compromised server's password file and known-key attacks, and provides forward secrecy, which is analyzed in the ideal hash model. This scheme matches the most efficient verifier-based PAKE protocol among those found in the literature. It is the first provably-secure one-round protocol for verifier-based PAKE in the two-party setting.

Original languageEnglish
Title of host publicationCommunications and Multimedia Security - 10th IFIP TC-6 TC-11 International Conference, CMS 2006, Proceedings
EditorsHerbert Leitold, Evangelos Markatos
PublisherSpringer Verlag
Pages87-96
Number of pages10
ISBN (Electronic)9783540478201
ISBN (Print)3540478205, 9783540478201
Publication statusPublished - 2006 Jan 1
Event10th IFIP TC-6 TC-11 International Conference on Communications and Multimedia Security, CMS 2006 - Heraklion, Crete, Greece
Duration: 2006 Oct 192006 Oct 21

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume4237 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Other

Other10th IFIP TC-6 TC-11 International Conference on Communications and Multimedia Security, CMS 2006
CountryGreece
CityHeraklion, Crete
Period06/10/1906/10/21

    Fingerprint

ASJC Scopus subject areas

  • Theoretical Computer Science
  • Computer Science(all)

Cite this

Kwon, J. O., Sakurai, K., & Lee, D. H. (2006). One-round protocol for two-party verifier-based password-authenticated key exchange. In H. Leitold, & E. Markatos (Eds.), Communications and Multimedia Security - 10th IFIP TC-6 TC-11 International Conference, CMS 2006, Proceedings (pp. 87-96). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 4237 LNCS). Springer Verlag.