Security weakness in a provable secure authentication protocol given forward secure session key

Mijin Kim; Heasuk Jo; Seungjoo Kim; Dongho Won

doi:10.1007/978-3-642-02457-3_18

Security weakness in a provable secure authentication protocol given forward secure session key

Mijin Kim, Heasuk Jo, Seungjoo Kim, Dongho Won

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

6 Citations (Scopus)

Abstract

Shi, Jang and Yoo recently proposed a provable secure key distribution and authentication protocol between user, service provider and key distribution center(KDC). The protocol was based on symmetric cryptosystem, challenge-response, Diffie-Hellman component and hash function. Despite the claim of provable security, the protocol is in fact insecure in the presence of an active adversary. In this paper, we present the imperfection of Shi et al.'s protocol and suggest modifications to the protocol which would resolve the problem.

Original language	English
Title of host publication	Computational Science and Its Applications - ICCSA 2009 - International Conference, Proceedings
Pages	204-211
Number of pages	8
Edition	PART 2
DOIs	https://doi.org/10.1007/978-3-642-02457-3_18
Publication status	Published - 2009
Externally published	Yes
Event	International Conference on Computational Science and Its Applications, ICCSA 2009 - Seoul, Korea, Republic of Duration: 2009 Jun 29 → 2009 Jul 2

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Number	PART 2
Volume	5593 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Other

Other	International Conference on Computational Science and Its Applications, ICCSA 2009
Country/Territory	Korea, Republic of
City	Seoul
Period	09/6/29 → 09/7/2

Keywords

Authentication
Cryptography
Key distribution
Known key attack
Provable security

ASJC Scopus subject areas

Theoretical Computer Science
Computer Science(all)

Access to Document

10.1007/978-3-642-02457-3_18

Cite this

Kim, M., Jo, H., Kim, S., & Won, D. (2009). Security weakness in a provable secure authentication protocol given forward secure session key. In Computational Science and Its Applications - ICCSA 2009 - International Conference, Proceedings (PART 2 ed., pp. 204-211). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 5593 LNCS, No. PART 2). https://doi.org/10.1007/978-3-642-02457-3_18

Security weakness in a provable secure authentication protocol given forward secure session key. / Kim, Mijin; Jo, Heasuk; Kim, Seungjoo et al.

Computational Science and Its Applications - ICCSA 2009 - International Conference, Proceedings. PART 2. ed. 2009. p. 204-211 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 5593 LNCS, No. PART 2).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Kim, M, Jo, H, Kim, S & Won, D 2009, Security weakness in a provable secure authentication protocol given forward secure session key. in Computational Science and Its Applications - ICCSA 2009 - International Conference, Proceedings. PART 2 edn, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), no. PART 2, vol. 5593 LNCS, pp. 204-211, International Conference on Computational Science and Its Applications, ICCSA 2009, Seoul, Korea, Republic of, 09/6/29. https://doi.org/10.1007/978-3-642-02457-3_18

Kim M, Jo H, Kim S, Won D. Security weakness in a provable secure authentication protocol given forward secure session key. In Computational Science and Its Applications - ICCSA 2009 - International Conference, Proceedings. PART 2 ed. 2009. p. 204-211. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); PART 2). doi: 10.1007/978-3-642-02457-3_18

Kim, Mijin ; Jo, Heasuk ; Kim, Seungjoo et al. / Security weakness in a provable secure authentication protocol given forward secure session key. Computational Science and Its Applications - ICCSA 2009 - International Conference, Proceedings. PART 2. ed. 2009. pp. 204-211 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); PART 2).

@inproceedings{73b8a6b2f8564cae9c8adc96a26d1c17,

title = "Security weakness in a provable secure authentication protocol given forward secure session key",

abstract = "Shi, Jang and Yoo recently proposed a provable secure key distribution and authentication protocol between user, service provider and key distribution center(KDC). The protocol was based on symmetric cryptosystem, challenge-response, Diffie-Hellman component and hash function. Despite the claim of provable security, the protocol is in fact insecure in the presence of an active adversary. In this paper, we present the imperfection of Shi et al.'s protocol and suggest modifications to the protocol which would resolve the problem.",

keywords = "Authentication, Cryptography, Key distribution, Known key attack, Provable security",

author = "Mijin Kim and Heasuk Jo and Seungjoo Kim and Dongho Won",

year = "2009",

doi = "10.1007/978-3-642-02457-3_18",

language = "English",

isbn = "3642024564",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

number = "PART 2",

pages = "204--211",

booktitle = "Computational Science and Its Applications - ICCSA 2009 - International Conference, Proceedings",

edition = "PART 2",

note = "International Conference on Computational Science and Its Applications, ICCSA 2009 ; Conference date: 29-06-2009 Through 02-07-2009",

}

TY - GEN

T1 - Security weakness in a provable secure authentication protocol given forward secure session key

AU - Kim, Mijin

AU - Jo, Heasuk

AU - Kim, Seungjoo

AU - Won, Dongho

PY - 2009

Y1 - 2009

N2 - Shi, Jang and Yoo recently proposed a provable secure key distribution and authentication protocol between user, service provider and key distribution center(KDC). The protocol was based on symmetric cryptosystem, challenge-response, Diffie-Hellman component and hash function. Despite the claim of provable security, the protocol is in fact insecure in the presence of an active adversary. In this paper, we present the imperfection of Shi et al.'s protocol and suggest modifications to the protocol which would resolve the problem.

AB - Shi, Jang and Yoo recently proposed a provable secure key distribution and authentication protocol between user, service provider and key distribution center(KDC). The protocol was based on symmetric cryptosystem, challenge-response, Diffie-Hellman component and hash function. Despite the claim of provable security, the protocol is in fact insecure in the presence of an active adversary. In this paper, we present the imperfection of Shi et al.'s protocol and suggest modifications to the protocol which would resolve the problem.

KW - Authentication

KW - Cryptography

KW - Key distribution

KW - Known key attack

KW - Provable security

UR - http://www.scopus.com/inward/record.url?scp=70350686745&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-02457-3_18

DO - 10.1007/978-3-642-02457-3_18

M3 - Conference contribution

AN - SCOPUS:70350686745

SN - 3642024564

SN - 9783642024566

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 204

EP - 211

BT - Computational Science and Its Applications - ICCSA 2009 - International Conference, Proceedings

T2 - International Conference on Computational Science and Its Applications, ICCSA 2009

Y2 - 29 June 2009 through 2 July 2009

ER -

Security weakness in a provable secure authentication protocol given forward secure session key

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this