Title :
An Efficient Client-to-Client Password-Authenticated Key Exchange Resilient to Server Compromise
Author :
Zhu Hongfeng ; Liu Tianhua ; Liu Jie ; Chang Guiran
Author_Institution :
Shenyang Normal Univ., Shenyang
Abstract :
With rapid changes in the modern communication environment such as ad hoc networks and ubiquitous computing, it is necessary to construct a secure end-to-end channel between clients. The fundamental security goal of PAKE is security against dictionary attacks. The protocols for verifier-based PAKE are additionally required to be secure against server compromise. This paper presents a new password authentication and key-exchange protocol suitable for client-to-client without a server public key in different realms to agree on a common session key using different passwords over an untrusted network. The proposed protocol´s security, simplicity, and speed make it ideal for a wide range of real-world applications in which secure password authentication is required.
Keywords :
ad hoc networks; cryptographic protocols; message authentication; public key cryptography; ad hoc networks; client-to-client password-authenticated key exchange protocols; communication environment; end-to-end channel; server compromise; ubiquitous computing; Ad hoc networks; Authentication; Computer networks; Cryptography; Dictionaries; Educational institutions; Network servers; Pervasive computing; Protocols; Ubiquitous computing;
Conference_Titel :
Dependable Computing, 2007. PRDC 2007. 13th Pacific Rim International Symposium on
Conference_Location :
Melbourne, Qld.
Print_ISBN :
0-7695-3054-0
DOI :
10.1109/PRDC.2007.32
