Title :
Cryptanalysis and Improvement of EC2C-PAKA Protocol in Cross-Realm
Author :
Zhou, Fucai ; Liu, Xiumei ; Yan, Hong ; Chang, Guiran
Author_Institution :
Dept. of Inf. Sci. & Eng., Northeastern Univ., Shenyang
Abstract :
Byun et al. proposed a cross-realm client-to-client password-authenticated key exchange (C2C-PAKE) protocol in ICICS´02. The protocol enables two clients in different realms to agree on a common session key by using different passwords. In this paper, we analyze Byun et al.´s new efficient client-to-client password-authenticated key agreement (EC2C-PAKA) protocol of 2007, and show that the efficient protocol is vulnerable to password-compromise impersonation attack. In addition, we present an improved client-to-client password-authenticated key agreement protocol in cross-realm based on public-key. By analyzing the security attributes and performances, we show that our improved protocol can resist many attacks and is more efficient.
Keywords :
cryptographic protocols; message authentication; public key cryptography; EC2C-PAKA protocol; common session key; cross-realm client-to-client password-authenticated key exchange; cryptanalysis; password-compromise impersonation attack; public-key cryptography; security attribute; Dictionaries; Information science; Network servers; Parallel processing; Performance analysis; Protocols; Public key; Resilience; Resists; Security; C2C-PAKA; Cross-Realm; password-compromise impersonate attack;
Conference_Titel :
Network and Parallel Computing, 2008. NPC 2008. IFIP International Conference on
Conference_Location :
Shanghai
Print_ISBN :
978-0-7695-3354-4
DOI :
10.1109/NPC.2008.75
