Fuzzy Password-Authenticated Key Exchange

Dupont, Pierre-Alain; Hesse, Julia; Pointcheval, David; Reyzin, Leonid; Yakoubov, Sophia

doi:10.1007/978-3-319-78372-7_13

Cited by 31 publications

(21 citation statements)

References 63 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To implement the fPAKE protocol, we use primitives from a Python cryptography library [39]. For the ECC, we utilize Shamir's secret sharing scheme in its error-correcting variant (i.e., introducing redundancy by adding more point-value pairs of the polynomial) [10]. For the PAKE component, we use the Encrypted Key Exchange (EKE) protocol [1], built as Diffie-Hellman key exchange symmetrically encrypted with passwords.…”

Section: Methodsmentioning

confidence: 99%

“…This is challenging because fewer bits means less entropy in a shared key, easing an offline attack. To address this challenge, we adapt a recently introduced Fuzzy Password-Authenticated Key Exchange (fPAKE) protocol [10]. fPAKE establishes a shared key from low-entropy secrets (e.g., short passwords) and is resistant to offline attacks.…”

Section: Seconds Minutes Hoursmentioning

confidence: 99%

“…(3) attacks caused by the predictable context (e.g., replay). FastZIP overcomes these limitations by a novel design, namely combining the fPAKE protocol [10] and multi-sensor context constructed by combining multiple sensor modalities (i.e., sensor fusion). Table 3 compares FastZIP and prominent state-of-the-art ZIP schemes in terms of pairing time, error rates, and entropy biases in the fingerprints.…”

Section: Related Workmentioning

confidence: 99%

“…We first explain the working principle and shortcomings of fuzzy commitments-a cryptographic protocol used by state-of-the-art ZIP schemes to share a secret key. Then, we detail the fPAKE protocol [10], addressing these shortcomings, that we utilize in FastZIP.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

FastZIP

Fomichev

Hesse

Almon

et al. 2021

Proceedings of the 19th Annual International Conference on Mobile Systems, Applications, and Services

Self Cite

View full text Add to dashboard Cite

With the advent of the Internet of Things (IoT), establishing a secure channel between smart devices becomes crucial. Recent research proposes zero-interaction pairing (ZIP), which enables pairing without user assistance by utilizing devices' physical context (e.g., ambient audio) to obtain a shared secret key. The state-of-the-art ZIP schemes suffer from three limitations: (1) prolonged pairing time (i.e., minutes or hours), (2) vulnerability to brute-force offline attacks on a shared key, and (3) susceptibility to attacks caused by predictable context (e.g., replay attack) because they rely on limited entropy of physical context to protect a shared key. We address these limitations, proposing FastZIP, a novel ZIP scheme that significantly reduces pairing time while preventing offline and predictable context attacks. In particular, we adapt a recently introduced Fuzzy Password-Authenticated Key Exchange (fPAKE) protocol and utilize sensor fusion, maximizing their advantages. We instantiate FastZIP for intra-car device pairing to demonstrate its feasibility and show how the design of FastZIP can be adapted to other ZIP use cases. We implement FastZIP and evaluate it by driving four cars for a total of 800 km. We achieve up to three times shorter pairing time compared to the state-of-the-art ZIP schemes while assuring robust security with adversarial error rates below 0.5%. CCS CONCEPTS• Security and privacy → Security services; • Computer systems organization → Embedded and cyber-physical systems.

show abstract

Section: Methodsmentioning

confidence: 99%

Section: Seconds Minutes Hoursmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

FastZIP

Fomichev

Hesse

Almon

et al. 2021

Proceedings of the 19th Annual International Conference on Mobile Systems, Applications, and Services

Self Cite

View full text Add to dashboard Cite

show abstract

“…Key reconciliation-a suite of techniques that context-based authentication relies heavily on-was originally developed for exchanging information over quantum communication channels [2,3,20]. Fuzzy extractors [5], fuzzy vaults [13], fuzzy commitment [14], and fPAKEs [6] are more modern cryptographic techniques that are commonly used in key reconciliation by context-based authentication systems. Also other authors have built techniques to create a more uniform distribution of biased random number generators [8].…”

Section: Related Workmentioning

confidence: 99%

Moonshine

West

Lee

Banerjee

et al. 2021

Proceedings of the 20th International Conference on Information Processing in Sensor Networks (Co-Located With CPS-IoT Week 202

View full text Add to dashboard Cite

Context-based authentication is a method for transparently validating another device's legitimacy to join a network based on location. Devices can pair with one another by continuously harvesting environmental noise to generate a random key with no user involvement. However, there are gaps in our understanding of the theoretical limitations of environmental noise harvesting, making it difficult for researchers to build efficient algorithms for sampling environmental noise and distilling keys from that noise. This work explores the information-theoretic capacity of contextbased authentication mechanisms to generate random bit strings from environmental noise sources with known properties. Using only mild assumptions about the source process's characteristics, we demonstrate that commonly-used bit extraction algorithms extract only about 10% of the available randomness from a source noise process. We present an efficient algorithm to improve the quality of keys generated by context-based methods and evaluate it on real key extraction hardware. Moonshine is a randomness distiller which is more efficient at extracting bits from an environmental entropy source than existing methods. Our techniques nearly double the quality of keys as measured by the NIST test suite, producing keys that can be used in real-world authentication scenarios.

show abstract

Two-Round PAKE Protocol over Lattices Without NIZK

Wang

2019

Information Security and Cryptology

View full text Add to dashboard Cite

Fuzzy Password-Authenticated Key Exchange

Cited by 31 publications

References 63 publications

FastZIP

FastZIP

Moonshine

Two-Round PAKE Protocol over Lattices Without NIZK

Contact Info

Product

Resources

About