Title :
Cryptanalysis of two password authenticated key exchange protocols based on RSA
Author :
Cao, Tianjie ; Lin, Dongdai
Author_Institution :
Sch. of Comput. Sci. & Technol., China Univ. of Mining & Technol., Xuzhou
Abstract :
In 2002, Zhu et al. proposed a password-based authenticated key exchange protocol based on RSA. Many researchers pointed out that Zhu et al.´s protocol is vulnerable to off-line dictionary attack. In 2003, Yeh et al. proposed an improved protocol. Recently, Lo and Yang-Wang pointed out that Yeh et al.´s improved protocol is also vulnerable to offline dictionary attack. To avoid this weakness existed in Yeh et al.´s protocol, Lo and Yang-Wang proposed two improved protocols. However, in this letter, we show that the Lo protocol is vulnerable to an active off-line dictionary attack and the Yang-Wang protocol is vulnerable to a passive off-line dictionary attack
Keywords :
message authentication; private key cryptography; protocols; public key cryptography; RSA; cryptanalysis; key exchange protocol; off-line dictionary attack; password authentication; Authentication; Computer science; Cryptographic protocols; Dictionaries; Information security; Laboratories; Network servers; Public key cryptography; Relays; Resists;
Journal_Title :
Communications Letters, IEEE
DOI :
10.1109/LCOMM.2006.1665131
