Provably Secure Gateway-Oriented Password-Based Authenticated Key Exchange Protocol Resistant to Password Guessing Attacks

Provably Secure Gateway-Oriented Password-Based Authenticated Key Exchange Protocol Resistant to Password Guessing Attacks

A Gateway-oriented Password-based Authenticated Key Exchange (GPAKE) scheme allows a client to establish an authenticated session key with a gateway via the help of an authentication server, where the client has pre-shared a password with the server. The desirable security properties of a GPAKE incl...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Journal of Information Science and Engineering 2013-03, Vol.29 (2), p.249-265
Hauptverfasser: 簡宏宇(Hung-Yu Chien), 吳宗成(Tzong-Chen Wu), 葉明貴(Ming-Kuei Yeh)
Format: Artikel
Sprache:eng
Schlagworte:
Authentication
Computer information security
Passwords
Privacy
Security
Semantics
Servers
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:A Gateway-oriented Password-based Authenticated Key Exchange (GPAKE) scheme allows a client to establish an authenticated session key with a gateway via the help of an authentication server, where the client has pre-shared a password with the server. The desirable security properties of a GPAKE include session key semantic security, key privacy against servers, and password guessing attacks resistance. Abdalla et al.'s scheme (Asiacrypt 2005) [1] proposed the first GPAKE scheme, and then Abdalla et al. [13] and Byun et al.'s [2] had respectively proposed their improvements to enhance the security. Unfortunately, we find that all the improved schemes fail to commit the security requirements. In this paper, we point out security weaknesses of the improved scheme. To enhance the security, we propose a new GPAKE scheme, and prove its security in an enhanced model.
ISSN:1016-2364
DOI:10.6688/JISE.2013.29.2.4