标准模型下高效的基于口令认证密钥协商协议

舒剑; 许春香

doi:10.3724/SP.J.1146.2008.01548

标准模型下高效的基于口令认证密钥协商协议

doi: 10.3724/SP.J.1146.2008.01548

舒剑,
许春香

基金项目:

国家863计划项目(2009AA012415)资助课题

计量
- 文章访问数: 2826
- HTML全文浏览量: 86
- PDF下载量: 833
- 被引次数: 0
出版历程
- 收稿日期: 2008-11-25
- 修回日期: 2009-04-21
- 刊出日期: 2009-11-19

Efficient Password-Based Authenticated Key Exchange Protocol under Standard Model

摘要

摘要: 基于口令的认证密钥协商协议是利用预先共享的口令协商安全性较高的密钥。现有的基于口令认证密钥协商协议大多需要较大的计算量，或者只在随机预言模型下证明了协议的安全性。该文提出了新的标准模型下基于口令密钥协商协议，协议只需要一个生成元。与其它标准模型下的协议相比，新协议不需要CPA或CCA2安全的加密方案，因而具有计算复杂度低和协议描述简单的特点。相对于殷胤等人在标准模型下可证安全的加密密钥协商协议一文中提出的协议，新协议将指数运算降低了64%。最后，基于DDH假设，在标准模型下证明了协议的安全性。
- 身份认证; 基于口令; 标准模型; 可证安全
Abstract: The goal of password-based authenticated exchange protocol is established secure key by using pre- shared human-memorable password. Most of existing schemes either have computation burden or rely on the random oracle model. A new scheme without random oracles is proposed, which requires only one generator. Due to not using CPA or CCA2 public encryption scheme, the proposed protocol is efficient in computational cost and simple in protocol description when compared other solutions without random oracles. Specifically, this protocol reduces 64% of the exponential computations of the protocol proposed by Yin Yin et al. in the paper of Provable secure encrypted key exchange protocol under standard model. The security of the proposed scheme has been proven in the standard model under DDH assumption.

HTML全文

参考文献(1)

Bellovin S and Merritt M. Encrypted key exchange:password-based protocol secure against dictionary attacks[C].Proceedings of the 1992 Conference IEEE computer societysymp. on Research in security and privacy, Oakland, USA,1992: 72-84.[2]Bellare M, Pointcheval D, and Rogaway P. Authenticated keyexchange secure against dictionary attacks[C]. Proceedings ofEUROCRYPT 2000, Bruges, Belgium, LNCS 1807: 139-155.[3]Abdalla M, Chevassut O, and Pointcheval D. One-timeverifier-based encrypted key exchange[C]. Proceedings ofPKC 2005, Les Diablerets, Switzerland, LNCS 3386: 47-64.[4]Abdalla M and Pointcheval D. Simple password-basedencrypted key exchange protocols[C]. Proceedings ofCT-RSA 2005, San Francisco, USA, LNCS 3376: 191-208.[5]Shao Jun, Cao Zhen fu, and Wang Li cheng. Efficientpassword-based authenticated key exchange without Publicinformation[C]. Proceedings of ESORICS 2007, Dresden,Germany, LNCS 4734: 299-310.[6]Feng Deng guo and Chen Wei dong. Modular approach to thedesign and analysis of password-based security protocols[J].Science in China Series F.2007, 50(3):381-398[7]Katz J, Ostrovsky R, and Yung M. Efficientpassword-authentication key exchange using humanmemorablepasswords[C]. Proceedings of EUROCRYPT 2001,Innsbruck, Austria, LNCS 2045: 475-494.[8]Jiang S Q and Gong G. Password based key exchange withmutual authentication[C]. Proceedings of SAC 2004, Nicosia,Cyprus, LNCS 3357: 267-279.[9]殷胤, 李宝. 标准模型下可证安全的加密密钥协商协议[J]．软件学报, 2007, 18(2): 422-429.Yin Yin and Li Bao. Provable secure encrypted key exchangeprotocol under standard model[J]. Journal of Software, 2007,18(2): 422-429.

施引文献

资源附件(0)

访问统计