An efficient eCK secure certificateless authenticated key agreement scheme with security against public key replacement attacks

“…Efforts have been made to resolve this problem. Since then, many CL-AKA schemes have been proposed [ 29 , 30 , 31 , 32 , 33 , 34 , 35 , 36 , 37 ]. There are two common security requirements for CL-PKC technologies.…”

“…In Sun et al [ 34 ] and Simplicio Jr et al [ 35 ], because the partial key generated by KGC contains only the information of the user’s identifier and the verification tag, only the identifier can actually be checked. Later, Xie et al [ 36 ] and Daniel et al [ 37 ] solve this problem by including the information of verification public key generated by the user and the identifier in the partial key generated by KGC. However, public key replacement attacks are also possible in [ 36 ].…”

“…However, public key replacement attacks are also possible in [ 36 ]. The authors of [ 37 ] argued that there was no problem even if the partial key generated by KGC was transmitted publicly. However, if a partial key is transmitted publicly, anyone can create values that are used as input when performing hash operation on the value to be authenticated.…”

“…Scheme 2 features the certificateless-based AKA introduced in 2.4; however, to bind the public key to the signature generated by the CA, the user first generates a key pair and a partial secret key in the CA. This is the scheme described previously [ 37 ]. Figure 6 shows the scenario of Scheme 2 and the system parameters of Scheme 2 are as follows.…”

“…Compared with Scheme 1, which can perform authentication and key agreement quickly, it does not show efficiency in terms of speed. However, compared with the existing ECDSA or other schemes [ 29 , 30 , 32 , 33 , 34 , 35 , 36 , 37 ], the computation speed of Scheme 1 is reduced, and it provides safety considering masquerade attack, replay attack, and public key verifiability. Table 4 shows the comparison of Scheme 2 with the existing schemes.…”

A Lightweight Authentication and Key Agreement Schemes for IoT Environments

“…Efforts have been made to resolve this problem. Since then, many CL-AKA schemes have been proposed [ 29 , 30 , 31 , 32 , 33 , 34 , 35 , 36 , 37 ]. There are two common security requirements for CL-PKC technologies.…”

“…In Sun et al [ 34 ] and Simplicio Jr et al [ 35 ], because the partial key generated by KGC contains only the information of the user’s identifier and the verification tag, only the identifier can actually be checked. Later, Xie et al [ 36 ] and Daniel et al [ 37 ] solve this problem by including the information of verification public key generated by the user and the identifier in the partial key generated by KGC. However, public key replacement attacks are also possible in [ 36 ].…”

“…However, public key replacement attacks are also possible in [ 36 ]. The authors of [ 37 ] argued that there was no problem even if the partial key generated by KGC was transmitted publicly. However, if a partial key is transmitted publicly, anyone can create values that are used as input when performing hash operation on the value to be authenticated.…”

“…Scheme 2 features the certificateless-based AKA introduced in 2.4; however, to bind the public key to the signature generated by the CA, the user first generates a key pair and a partial secret key in the CA. This is the scheme described previously [ 37 ]. Figure 6 shows the scenario of Scheme 2 and the system parameters of Scheme 2 are as follows.…”

“…Compared with Scheme 1, which can perform authentication and key agreement quickly, it does not show efficiency in terms of speed. However, compared with the existing ECDSA or other schemes [ 29 , 30 , 32 , 33 , 34 , 35 , 36 , 37 ], the computation speed of Scheme 1 is reduced, and it provides safety considering masquerade attack, replay attack, and public key verifiability. Table 4 shows the comparison of Scheme 2 with the existing schemes.…”

A Lightweight Authentication and Key Agreement Schemes for IoT Environments

An efficient and secure CLAKA protocol for blockchain-aided wireless body area networks

A Novel Certificateless Authentication and Key Agreement Protocol for Smart Grid