Security of group key exchange protocols with different passwords

Research output: Chapter in Book/Report/Conference proceedingConference PaperResearchpeer-review

Abstract

Password-based authenticated group key exchange protocols allow group users to jointly share a session key based on a human-memorizable password. In this paper, we present an undetectable online dictionary attack on N-EKE-D, a recent provably secure protocol designed to explicitly resist this type of attack. Thus, our result contradicts the design goal. We also give a simple attack on the key indistinguishability of N-EKE-D and two N-EKE-M variants that exploits the definition of partnering in their security model.

Original languageEnglish
Title of host publicationProceedings - 2009 International Conference on Advanced Information Networking and Applications Workshops, WAINA 2009
Pages147-152
Number of pages6
DOIs
Publication statusPublished - 2009
Externally publishedYes
EventInternational Conference on Advanced Information Networking and Applications Workshops 2009 - Bradford, United Kingdom
Duration: 26 May 200929 May 2009
https://ieeexplore.ieee.org/xpl/conhome/5136571/proceeding (Proceedings)

Publication series

NameProceedings - International Conference on Advanced Information Networking and Applications, AINA
ISSN (Print)1550-445X

Conference

ConferenceInternational Conference on Advanced Information Networking and Applications Workshops 2009
Abbreviated titleWAINA 2009
Country/TerritoryUnited Kingdom
CityBradford
Period26/05/0929/05/09
Internet address

Keywords

  • Cryptanalysis
  • Group
  • Key indistinguishability
  • Model
  • Password-authenticated key exchange
  • Proof
  • Undetectable online dictionary attack

Cite this