Weakness in Jung et al.'s ID-based conference key distribution scheme

Junghyun Nam, Seung-Joo Kim, Dongho Won

Research output: Contribution to journalArticle

1 Citation (Scopus)


In 2000, Xu and Tilborg proposed an ID-based conference key distribution scheme which builds on earlier work of Harn and Yang in the 2-party setting. Recently, Jung et al. have discovered security flaws in the Xu-Tilborg scheme and proposed an improvement of this scheme to fix the security flaws. However, Jung et al.'s improvement introduces another security weakness. We demonstrate this by showing that the improved scheme is vulnerable to a parallel session attack mounted by two colluding adversaries. Further, we recommend changes to the scheme that address this vulnerability.

Original languageEnglish
Pages (from-to)213-218
Number of pages6
JournalIEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences
Issue number1
Publication statusPublished - 2006 Jan 1
Externally publishedYes



  • Conference key distribution
  • Implicit key authentication
  • Parallel session attack

ASJC Scopus subject areas

  • Electrical and Electronic Engineering
  • Hardware and Architecture
  • Information Systems

Cite this