Abstract

Abstract. Asymmetric password based key exchange is a key exchange protocol where a client and a server share a low entropic password while the server additionally owns a high entropic secret with respect to a public key. There are simple solutions for this, e.g., [ACM Trans. Inf. Syst. Secur. 2 (1999), 230–268] and its improvement in [Proceedings of CCS 1999, ACM (1999), 63–72]. In the present paper, we consider a new threat to this type of protocol: if a server's high entropic secret gets compromised (e.g., due to cryptanalysis or a poor management), the adversary might quickly break lots of passwords and cause uncountable damage. In this case, one should not expect the protocol to be secure against an off-line dictionary attack since, otherwise, the protocol is in fact a secure password-only key exchange by making the server high entropic secret public. Of course a password-only key exchange does not suffer from this threat as the server does not have a high entropic secret at all. However, known password-only key exchange protocols are not very efficient (note: we only consider protocols without random oracles). This motivates us to study an efficient and secure asymmetric password key exchange that avoids the new threat. In this paper, we first provide a formal model for the new threat, where essentially we require that the active adversary can break ℓ $\ell $ passwords in α ℓ | 𝒟 | $\alpha \ell |\mathcal {D}|$ steps (for α < 1 / 2 $\alpha <1/2$ ) only with a probability negligibly close to exp ( - β ℓ ) $\exp (-\beta \ell )$ for some β > 0 $\beta >0$ , where 𝒟 $\mathcal {D}$ is a password dictionary. Then, we construct a framework of asymmetric password based key exchange. We prove that our protocol is secure in the regular model where server high entropic key is never compromised and that it prevents the new threat. To do this, we introduce a new technique by abstracting a probabilistic experiment from the main proof and providing a neat analysis of it.

Full Text
Published version (Free)

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Provably Secure Password-Authenticated Key Exchange Using Diffie-Hellman
Victor Boyko ... Philip Mackenzie
-
Victor Boyko, et. al.Victor Boyko ... Philip Mackenzie
01 Jan 1999
ID-Based Group Password-Authenticated Key Exchange
Xun Yi ... Raylin Tso
-
Xun Yi, et. al.Xun Yi ... Raylin Tso
01 Jan 2009
New Approaches to Password Authenticated Key Exchange Based on RSA
Muxiang Zhang
-
Muxiang ZhangMuxiang Zhang
01 Jan 2004
One-Round Attribute-Based Key Exchange in the Multi-Party Setting
Yangguang Tian ... Kaitai Liang
International Journal of Foundations of Computer Science | VOL. 28
Yangguang Tian, et. al.Yangguang Tian ... Kaitai Liang
01 Sep 2017
View more papers

More From: Journal of Mathematical Cryptology

Paper Title
Journal
Date
Author
Characterizing the upper bound on the transparency order of (n, m)-functions
Yu Zhou ... Rong Cheng
Journal of Mathematical Cryptology | VOL. 18
Yu Zhou, et. al.Yu Zhou ... Rong Cheng
09 Jul 2024
Characterizing the upper bound on the transparency order of (n, m)-functions
Yu Zhou ... Rong Cheng
Journal of Mathematical Cryptology | VOL. 18
Yu Zhou, et. al.Yu Zhou ... Rong Cheng
09 Jul 2024
The dihedral hidden subgroup problem
Imin Chen ... David Sun
Journal of Mathematical Cryptology | VOL. 18
Imin Chen, et. al.Imin Chen ... David Sun
16 Mar 2024
Cryptanalysis of a privacy-preserving authentication scheme based on private set intersection
Sigurd Eskeland
Journal of Mathematical Cryptology | VOL. 18
Sigurd EskelandSigurd Eskeland
08 Mar 2024
View more papers