An Efficient Certificate-Based Authenticated Key Agreement Protocol without Bilinear Pairing

Lu, Yang; Zhang, Quanling; Li, Jiguo; Shen, Jian

doi:10.5755/j01.itc.46.3.14968

Cited by 3 publications

(9 citation statements)

References 38 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Moreover, Lim et al [3] proposed a new CB-AKE protocol to improve the security. Latterly, many studies on CB-AKE protocols were published in the literatures [4], [5], [6].…”

Section: A Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Leakage-Resilient Certificate-Based Authenticated Key Exchange Protocol

Tsai

Huang

Tseng

et al. 2022

IEEE Open J. Comput. Soc.

View full text Add to dashboard Cite

Certificate-based public key cryptography (CB-PKC) removes the problem of certificate management in traditional public key systems and avoids the key escrow problem in identity-based public key systems. In the past, many authenticated key exchange (AKE) protocols based on CB-PKC systems, called CB-AKE, were proposed to be applied to secure communications between two remote participants. However, these existing CB-AKE protocols become insecure since attackers could compute and obtain the whole secret key from some partial leaked information of the secret key by side channel attacks. In this paper, our goal is to propose the f irst CB-AKE protocol with the property to resist side channel attacks, called leakage-resilient CB-AKE (LR-CB-AKE). The proposed LR-CB-AKE protocol is formally proven to be secure in the generic bilinear group (GBG) model under the discrete logarithm (DL) and computational Diffie-Hellman (CDH) assumptions.

show abstract

“…Moreover, Lim et al [3] proposed a new CB-AKE protocol to improve the security. Latterly, many studies on CB-AKE protocols were published in the literatures [4], [5], [6].…”

Section: A Related Workmentioning

confidence: 99%

“…They may employ the CSK to encrypt data and transmit the encrypted data to the other participant to ensure the confidentiality of the data. Until now, several CB-AKE protocols [3], [4], [5], [6] have been proposed. However, none of these protocols can resist side channel attacks [7], [8].…”

Section: Introductionmentioning

confidence: 99%

Leakage-Resilient Certificate-Based Authenticated Key Exchange Protocol

Tsai

Huang

Tseng

et al. 2022

IEEE Open J. Comput. Soc.

View full text Add to dashboard Cite

show abstract

“…According to the comparison result, there is a threat of user key leakage and KCI attack caused by leaked temporary key in the literature [2,7]. Once the attacker steals any user's temporary private key, he can calculate user's private key by the correlation expression and implement KCI attacks.…”

Section: Security and Efficiency Comparisonmentioning

confidence: 99%

“…But most of these protocols are based on bilinear pairs operation and the computational complexity is higher. Wenhao Liu et al [2] proposed a certificate-less two-party key agreement scheme without bilinear pairing and claimed that the scheme has a temporary key leak security. However, the analysis indicates that if the user's temporary key leaks, the user's master key expression ( + ) during the key agreement will be calculated.…”

Section: Introductionmentioning

confidence: 99%

“…However, the analysis indicates that if the user's temporary key leaks, the user's master key expression ( + ) during the key agreement will be calculated. In literature [2], user Alice calculated = /( + + ℎ)and sent to user Bob as the authentication parameter. Once Alice leaks temporary private key, the attacker can use the formula: + = − ℎ to calculate Alice's authentication private key ( + ) while s and h are public parameters.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

An Improved Certificate-less Authenticated Key Agreement Protocol

Ling¹,

Yu²

2017

dtcse

View full text Add to dashboard Cite

Abstract. Through the analysis of the certificate-less authenticated key agreement protocol with security issue of key-compromise impersonation and invalid authentication, this paper proposes an efficient protocol based on Discrete Logarithm Problem and Computational Diffie-Hellman Problem assumptions to solve the security issue and reduce the overhead. During the conversation, the two entities each have three secret values, namely, the partial private key from Key Generate Center (KGC), the long-term private key from the entity itself, and the temporary private key for each conversation generated by the entity itself. Through the theoretical analysis, this scheme provides mutual authentication, forward security and key compromise impersonation, preventing MITM attack and keeping the session key secure as long as the communication parties with a secret value is not disclosed.

show abstract

Two-Party Key Agreement Protocol Without Central Authority for Mobile Ad Hoc Networks

Narsimha

2019

International Journal of Information Security and Privacy

View full text Add to dashboard Cite

Key agreement (KA) without the use of a central authority is an elementary cryptographic problem to ensure security in MANETs because such networks consist of movable nodes with no fixed infrastructure or no central administration. The nodes communicate via wireless channels that are more prone to security attacks. A majority of the existing KA protocols assume the existence of central authority and hence, not perfectly suitable for a MANET environment. Proposed 2P-NCKA (Two-Party Non-Central authority KA) protocol creates a secret key between two users for a MANET which does not assume the use of a central authority and a prior password. It uses pairings, a verifiable secret sharing scheme and routing protocol. The AOPMDV protocol allows transmission of multiple packets across multiple node-disjoint paths in parallel so that one packet is in each path. This article also cryptanalyzes Li's KA protocol and has proven its vulnerability towards a man-in-the-middle (MITM) attack. The 2P-NCKA protocol is secure against MITM attacks and all known attacks and addresses problems of Li's protocol with a small increase in execution time.

show abstract

An Efficient Certificate-Based Authenticated Key Agreement Protocol without Bilinear Pairing

Cited by 3 publications

References 38 publications

Leakage-Resilient Certificate-Based Authenticated Key Exchange Protocol

Leakage-Resilient Certificate-Based Authenticated Key Exchange Protocol

An Improved Certificate-less Authenticated Key Agreement Protocol

Two-Party Key Agreement Protocol Without Central Authority for Mobile Ad Hoc Networks

Contact Info

Product

Resources

About