Simple Three-Party Password Authenticated Key Exchange Protocol

doi:10.1007/s12204-011-1195-3

Journal of shanghai Jiaotong University (Science) ›› 2011, Vol. 16 ›› Issue (5): 600-603.doi: 10.1007/s12204-011-1195-3

• Articles • Previous Articles Next Articles

Simple Three-Party Password Authenticated Key Exchange Protocol

LO Nai-wei (罗乃维), YEH Kuo-hui (叶国晖)

(1. Department of Information Management, National Taiwan University of Science
and Technology, Taipei 10607;
2. Department of Information Management, Chinese Culture University, Taipei 11114)
(1. Department of Information Management, National Taiwan University of Science
and Technology, Taipei 10607;
2. Department of Information Management, Chinese Culture University, Taipei 11114)

Received:2011-05-10 Online:2011-10-29 Published:2011-10-20
Contact: LO Nai-wei (罗乃维), E-mail:nwlo@cs.ntust.edu.tw
Supported by:
the National Science Council (Nos. NSC99-2218-E-011-014 and NSC 100-2219-E-011-002)

Abstract

Abstract: Abstract: Three-party password authenticated key exchange (3PAKE)
protocol plays a significant role in the history of secure communication
area in which two clients agree a robust session key in an authentic manner
based on passwords. In recent years, researchers focused on developing
simple 3PAKE (S-3PAKE) protocol to gain system efficiency while preserving
security robustness for the system. In this study, we first demonstrate how
an undetectable on-line dictionary attack can be successfully applied over
three existing S-3PAKE schemes. An error correction code (ECC) based S-3PAKE
protocol is then introduced to eliminate the identified authentication
weakness.

Key words:

摘要： Abstract: Three-party password authenticated key exchange (3PAKE)
protocol plays a significant role in the history of secure communication
area in which two clients agree a robust session key in an authentic manner
based on passwords. In recent years, researchers focused on developing
simple 3PAKE (S-3PAKE) protocol to gain system efficiency while preserving
security robustness for the system. In this study, we first demonstrate how
an undetectable on-line dictionary attack can be successfully applied over
three existing S-3PAKE schemes. An error correction code (ECC) based S-3PAKE
protocol is then introduced to eliminate the identified authentication
weakness.

关键词:

CLC Number:

TP 309.2

LO Nai-wei (罗乃维), YEH Kuo-hui (叶国晖). Simple Three-Party Password Authenticated Key Exchange Protocol[J]. Journal of shanghai Jiaotong University (Science), 2011, 16(5): 600-603.

[1]	ZHANG Liang, QU Gang, LI Huixing, JIN Haochun. Research and Application of Key Technologies of Network Security Situation Awareness for Smart Grid Power Control Systems [J]. Journal of Shanghai Jiao Tong University, 2021, 55(S2): 103-109.
[2]	ZHOU Yi, QIN Kangping, SUN Jinwen, FAN Dongqi, ZHENG Yiming. Real-Time Risk Evaluation Method of Power System Equipment and N-m Fault Contingency Plan Generation Under Typhoon Meteorological Environment [J]. Journal of Shanghai Jiao Tong University, 2021, 55(S2): 22-30.
[3]	WU Nan, CHENG Zhetao, DU Liang, SHEN Yingping. Network Security Inference Method Based on Dempster-Shafer Theory [J]. Journal of Shanghai Jiao Tong University, 2021, 55(S2): 77-81.
[4]	ZHANG Taolue∗ (张韬略), TU Huizhao (涂辉招), QIU Wei (邱炜). Developing High-Precision Maps for Automated Driving in China: Legal Obstacles and the Way to Overcome Them [J]. J Shanghai Jiaotong Univ Sci, 2021, 26(5): 658-669.
[5]	CHEN Ying, WEI Guoning, TANG Shengyong, KANG Zhiyu. Global Space Security Situation Analysis and Development Proposal [J]. Air & Space Defense, 2021, 4(3): 99-104.
[6]	WANG Mingzheng, WANG Yijie, WANG Tianyu, HOU Linzao, LI Mian . New Approach for Information Security Evaluation and Management of IT Systems in Educational Institutions [J]. J Shanghai Jiaotong Univ Sci, 2020, 25(6): 689-699.
[7]	YANG Guangyu, QIU Hongbing. Robust Optimization for Energy Efficiency for Secrecy MIMO SWIPT Systems [J]. Journal of Shanghai Jiao Tong University, 2020, 54(4): 369-375.
[8]	GUO Fei (郭非), CAO Zhenfu (曹珍富), LIU Zhusen (刘竹森), CAO Nanyuan (曹楠源). A Privacy-Preserving Aggregation and Authentication Scheme Towards Mobile Users in Smart Grid [J]. Journal of Shanghai Jiao Tong University (Science), 2020, 25(1): 37-43.
[9]	SUN Zhuo,LIU Dong,XIAO Anhong,MING Pingzhou,GUO Wen,ZHOU Junyi,CHEN Junjie. Information Security Analysis of Digital Control System Based on Attack Tree Model [J]. Journal of Shanghai Jiaotong University, 2019, 53(Sup.1): 68-73.
[10]	MIRZAEE Siavash, JIANG Letian *(蒋乐天). Fast Confidentiality-Preserving Authentication for Vehicular Ad Hoc Networks [J]. Journal of Shanghai Jiao Tong University (Science), 2019, 24(1): 31-40.
[11]	HUA Cunqing. A Survey of Security Detection and Protection for Internet of Things [J]. Journal of Shanghai Jiaotong University, 2018, 52(10): 1307-1313.
[12]	YI Ping,WANG Kedi,HUANG Cheng,GU Shuangchi,ZOU Futai,LI Jianhua. Adversarial Attacks in Artificial Intelligence： A Survey [J]. Journal of Shanghai Jiaotong University, 2018, 52(10): 1298-1306.
[13]	XIA Yubin,CHEN Haibo,GUAN Haibing. Research on Computer System Isolation [J]. Journal of Shanghai Jiaotong University, 2018, 52(10): 1339-1347.
[14]	LI Jianhua. A Survey of New E-Government and Its Security Technologies [J]. Journal of Shanghai Jiaotong University, 2018, 52(10): 1370-1381.
[15]	Zhang Wei. Research on Key Technologies of Air Space [J]. Air & Space Defense, 2018, 1(1): 13-17.

Simple Three-Party Password Authenticated Key Exchange Protocol

Simple Three-Party Password Authenticated Key Exchange Protocol

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments