Strongly secure certificateless key exchange without pairing

Yang, Guomin; Tan, Chik-How

doi:10.1145/1966913.1966924

Cited by 50 publications

(33 citation statements)

References 18 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…However, since the computational costs required for pairing operations are much higher than those for standard operations, such as EC point multiplication, it is hard to implement pairing-based applications on resource-constrained devices. Several pairing-free CL-AKA protocols [10,9,26,24] have thus been proposed. However, most of those protocols were proved to be insecure and only two of them still remain secure: Sun's CL-AKA [24] and Yang's CL-AKA [26].…”

Section: Clsc-tkem and Cl-akamentioning

confidence: 99%

See 1 more Smart Citation

A Secure Communication Protocol for Drones and Smart Objects

Won

Seo

Bertino

2015

Proceedings of the 10th ACM Symposium on Information, Computer and Communications Security

View full text Add to dashboard Cite

In many envisioned drone-based applications, drones will communicate with many different smart objects, such as sensors and embedded devices. Securing such communications requires an effective and efficient encryption key establishment protocol. However, the design of such a protocol must take into account constrained resources of smart objects and the mobility of drones. In this paper, a secure communication protocol between drones and smart objects is presented. To support the required security functions, such as authenticated key agreement, non-repudiation, and user revocation, we propose an efficient Certificateless Signcryption Tag Key Encapsulation Mechanism (eCLSC-TKEM). eCLSC-TKEM reduces the time required to establish a shared key between a drone and a smart object by minimizing the computational overhead at the smart object. Also, our protocol improves drone's efficiency by utilizing dual channels which allows many smart objects to concurrently execute eCLSC-TKEM. We evaluate our protocol on commercially available devices, namely AR.Drone2.0 and TelosB, by using a parking management testbed. Our experimental results show that our protocol is much more efficient than other protocols.

show abstract

Section: Clsc-tkem and Cl-akamentioning

confidence: 99%

“…Several pairing-free CL-AKA protocols [10,9,26,24] have thus been proposed. However, most of those protocols were proved to be insecure and only two of them still remain secure: Sun's CL-AKA [24] and Yang's CL-AKA [26]. Recently, Li et al [12] proposed a certificateless signcryption tag KEM (CLSC-TKEM) protocol.…”

Section: Clsc-tkem and Cl-akamentioning

confidence: 99%

A Secure Communication Protocol for Drones and Smart Objects

Won

Seo

Bertino

2015

Proceedings of the 10th ACM Symposium on Information, Computer and Communications Security

View full text Add to dashboard Cite

show abstract

“…ANALYSIS AND IMPROVEMENT OF YANG AND TAN'S PROTOCOL Yang and Tan [20] claimed that their protocol was provably secure in the random oracle model, including the forward secrecy. That is, if an attacker does not know all of (D A , S A , esk A ), or all of (D B , S B , esk B ), it is unable for the attacker to derive the session key.…”

Section: Review Of Yang and Tan's Cl-ke Prtocolmentioning

confidence: 99%

“…Unfortunately, none of these protocols is secure [19]. Recently, Yang and Tan [20] proposed a new CL-KE protocol without pairing and claimed that their scheme was strongly secure to their security model.…”

Section: Introductionmentioning

confidence: 99%

Analysis and improvement of a strongly secure certificateless key exchange protocol without pairing

Zhang

Wen

et al. 2012

2012 International Conference on Systems and Informatics (ICSAI2012)

View full text Add to dashboard Cite

Recently, Yang and Tan proposed a certificateless key exchange protocol without pairing, and claimed their scheme satisfies forward secrecy, which means no adversary could derive an already-established session key unless the full user secret keys (including a private key and an ephemeral secret key) of both communication parties are compromised. However, in this paper, we point out their protocol is actually not secure as claimed by presenting an attack launched by an adversary who has learned the private key of one party and the ephemeral secret key of the other, but not the full user secret keys of both parties. Furthermore, to make up this flaw, we also provide an improved protocol in which the private key and the ephemeral secret key are closely intertwined with each other for generating the session key, thus above attack can be efficiently resisted.

show abstract

“…Therefore, the certificateless key agreement protocols without bilinear pairings would be more appealing in terms of efficiency. Recently, several certificateless key exchange protocols without pairing have been proposed in (2009 till 2011) [15][16][17][18]. However, Yang et al [17] (2011) pointed out that both of Geng et al's protocol [15] (2009) and Hou et al's protocol [16] (2009) are not secure.…”

Section: Introductionmentioning

confidence: 99%

Avoiding Key Off-Set attack in a Pairing-Free Certificateless Key Agreement Protocol based on ECC

Elkamchouchi¹,

Elkhair²,

Abouelseoud³

2013

IJCA

View full text Add to dashboard Cite

A key establishment protocol allows entities to establish a common secret key to ensure secure communications over an insecure public network. This paper proposes two new twoparty key agreement protocols. Both protocols do not involve bilinear pairings. The first protocol is a certificate-based key agreement protocol that is more efficient than [1] due to its dependence on the elliptic curve discrete logarithm problem and the second is an extension to a certificateless key agreement protocol. Both protocols depend on the use of an authentication message to check that the shared session key is equal for both entities before using it. This authentication message prevents the key off-set attack that is valid for the Haiyan-Sun protocol [2]. The security analysis of the second protocol is discussed. The proposed certificateless key agreement protocol is compared with other protocols in literature [2,3,4] and it requires minimal computational cost. Moreover, this protocol is implemented using the Mathematica (7) program.

show abstract

Strongly secure certificateless key exchange without pairing

Cited by 50 publications

References 18 publications

A Secure Communication Protocol for Drones and Smart Objects

A Secure Communication Protocol for Drones and Smart Objects

Analysis and improvement of a strongly secure certificateless key exchange protocol without pairing

Avoiding Key Off-Set attack in a Pairing-Free Certificateless Key Agreement Protocol based on ECC

Contact Info

Product

Resources

About