A resilient identity-based authenticated key exchange protocol

Elashry, Ibrahim F.; Mu, Yi; Susilo, Willy

doi:10.1002/sec.1172

Cited by 10 publications

(14 citation statements)

References 40 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In this paper, we have studied the security of the IBAKE protocol in introduced in [7]. The authors claimed that their protocol is provably secure when during the key exchange session some secret bits are leaked.…”

Section: Resultsmentioning

confidence: 99%

“…For more details we refer the reader to [3]. Finally we state an important lemma that shows an important property used in [3] and [7].…”

Section: Quadratic Residues and Jacobi Symbol For Any Integermentioning

confidence: 99%

“…ELASHRY-MU-SUSILO (EMS) IBAKE SCHEME EMS scheme [7] is specified by the following algorithms ( Fig. 1): (1) (msk, mpk) ← Setup(λ).…”

Section: Quadratic Residues and Jacobi Symbol For Any Integermentioning

confidence: 99%

“…In Section 3, we present EMS IBAKE protocol. 11 In Section 4, we describe our attacks against this protocol. In Section 5, we discuss the question of repairing the scheme.…”

Section: Our Contributionmentioning

confidence: 99%

“…This work was then followed by several works. Recently, Elashry, Mu and Susilo [7] proposed another IBAKE protocol and introduced a new security notion called resiliency. A key exchange protocol is said to be resilient when parties are able to generate new shared secret keys without establishing a new session between them, even if a secret shared key has been compromised.…”

Section: Introductionmentioning

confidence: 99%

See 4 more Smart Citations

Cryptanalysis of an identity‐based authenticated key exchange protocol

Hatri

Otmani

Guenda

2017

Int J Communication

View full text Add to dashboard Cite

Authenticated Key Exchange (AKE) protocols represent an important cryptographic mechanism that enables several parties to communicate securely over an open network. Elashry, Mu and Susilo proposed an Identity Based Authenticated Key Exchange (IBAKE) protocol where different parties establish secure communication by means of their public identities.The authors also introduced a new security notion for IBAKE protocols called resiliency, that is, if the secret shared key is compromised, the entities can generate another shared secret key without establishing a new session between them. They then claimed that their IBAKE protocol satisfies this security notion.We analyze the security of their protocol and prove that it has a major security flaw which renders it insecure against an impersonation attack. We also disprove the resiliency property of their scheme by proposing an attack where an adversary can compute any share secret key if just one secret bit is leaked.

show abstract

Section: Resultsmentioning

confidence: 99%

“…For more details we refer the reader to [3]. Finally we state an important lemma that shows an important property used in [3] and [7].…”

Section: Quadratic Residues and Jacobi Symbol For Any Integermentioning

confidence: 99%

“…ELASHRY-MU-SUSILO (EMS) IBAKE SCHEME EMS scheme [7] is specified by the following algorithms ( Fig. 1): (1) (msk, mpk) ← Setup(λ).…”

Section: Quadratic Residues and Jacobi Symbol For Any Integermentioning

confidence: 99%

“…In Section 3, we present EMS IBAKE protocol. 11 In Section 4, we describe our attacks against this protocol. In Section 5, we discuss the question of repairing the scheme.…”

Section: Our Contributionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Cryptanalysis of an identity‐based authenticated key exchange protocol

Hatri

Otmani

Guenda

2017

Int J Communication

View full text Add to dashboard Cite

show abstract

A Lightweight Leakage-Resilient Identity-Based Mutual Authentication and Key Exchange Protocol for Resource-limited Devices

Tseng¹,

Chen²,

Huang³

2021

Computer Networks

View full text Add to dashboard Cite

A Leakage-Resilient Certificateless Authenticated Key Exchange Protocol Withstanding Side-Channel Attacks

2020

View full text Add to dashboard Cite

Certificateless public-key cryptography has conquered both the certificate management problem in the traditional public-key cryptography and the key escrow problem in the ID-based public-key cryptography. Certificateless authenticated key exchange (CLAKE) protocol is an important primitive of the certificateless public-key cryptography. A CLAKE protocol is employed to provide both mutual authentication and establishing a session key between two participators. Indeed, all conventional public-key cryptographies have encountered a new kind of attack, named "side-channel attacks". Fortunately, leakageresilient cryptography is a flexible approach to withstand such attacks. However, the design of leakageresilient CLAKE (LR-CLAKE) protocols is not studied. In the article, by extending the well-known extended-Canetti-Krawczyk (eCK) model, we present the security notions (adversary model) of LR-CLAKE protocols, called continual-leakage-resilient eCK (CLReCK) model. The first LR-CLAKE protocol withstanding side-channel attacks is proposed. By employing the proof technique of the generic bilinear group (GBG) model, we formally prove the security of our protocol in the CLReCK model.

show abstract

A resilient identity-based authenticated key exchange protocol

Cited by 10 publications

References 40 publications

Cryptanalysis of an identity‐based authenticated key exchange protocol

Cryptanalysis of an identity‐based authenticated key exchange protocol

A Lightweight Leakage-Resilient Identity-Based Mutual Authentication and Key Exchange Protocol for Resource-limited Devices

A Leakage-Resilient Certificateless Authenticated Key Exchange Protocol Withstanding Side-Channel Attacks

Contact Info

Product

Resources

About