Anonymous ID-Based Group Key Agreement for Wireless Networks

Wan, Zhiguo; Ren, Kui; Lou, Wenjing; Preneel, Bart

doi:10.1109/wcnc.2008.459

Cited by 19 publications

(30 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…But this protocol requires log n 2 rounds for n numbers of users. Since then, many ID-based group key exchange protocols [7], [10], [11] have been proposed.…”

Section: Related Workmentioning

confidence: 99%

A Pairing Free Certificateless Group Key Agreement Protocol with Constant Round

Kumar

Tripathi

Jaiswal

2014

Advanced Computing, Networking and Informatics- Volume 2

View full text Add to dashboard Cite

Abstract. To allow a secure conversation among a group of members over a public network there is a need of group key agreement protocol which provide a group session key used in necessary cryptographic operations. Nowadays the protocols based on the certificateless public key cryptography (CL-PKC) creating more attraction for research because it does not require certificates to authenticates the public key as like ID-based cryptosystem and unlike ID based cryptosystem, it does not suffers from the key escrow problem. The almost all CL-PKC based group key agreement schemes in current literature are employ bilinear pairing in their operations. Since the relative computation cost of pairing is many times more than the elliptic curve point multiplication, so it motivates the researchers to propose pairing free protocols based on the CL-PKC. The present paper propose an efficient pairing free group key agreement protocol based on certificateless cryptography over elliptic curve group with their security and performance analysis. The analysis shows that the proposed protocol has strong security protection against various kinds of attack and involves comparatively lower computation and communication overheads than the other existing protocols.

show abstract

“…But this protocol requires log n 2 rounds for n numbers of users. Since then, many ID-based group key exchange protocols [7], [10], [11] have been proposed.…”

Section: Related Workmentioning

confidence: 99%

A Pairing Free Certificateless Group Key Agreement Protocol with Constant Round

Kumar

Tripathi

Jaiswal

2014

Advanced Computing, Networking and Informatics- Volume 2

View full text Add to dashboard Cite

show abstract

“…Although the adversary reveals the private key S i , he cannot compute k i because computing r i r i+1 P given <P , r i P , r i+1 P > is hard problem under the ECDH assumption. Therefore, our Tables 1 and 2 show the comparison of Wan et al's protocols [7] and our proposed protocols in performance. We use the following notations:…”

Section: Securitymentioning

confidence: 99%

“…In 2008, Wan et al [7] proposed an anonymous IDbased GKA protocol. Their protocol keeps the advantage of the ID-based cryptosystem and provides anonymity of the identities from outsiders.…”

Section: Introductionmentioning

confidence: 99%

“…However, identities of group members can be exposed in the ID-based GKA protocol, so eavesdroppers can easily learn who belongs to the specific group. Recently, Wan et al [7] proposed a solution for this problem, an anonymous ID-based GKA protocol, which can keep group members' anonymity to outside eavesdroppers; nevertheless, the protocol has some security flaws. This paper shows that Wan et al's GKA is insecure against colluding attack and their joining/leaving protocols do not guarantee forward and backward secrecy.…”

mentioning

confidence: 99%

See 1 more Smart Citation

Forward Secure ID-Based Group Key Agreement Protocol with Anonymity

Park

Kim

2009

2009 Third International Conference on Emerging Security Information, Systems and Technologies

View full text Add to dashboard Cite

ID-based group key agreement (GKA) has been increasingly researched with the advantage of simple public key management. However, identities of group members can be exposed in the ID-based GKA protocol, so eavesdroppers can easily learn who belongs to the specific group. Recently, Wan et al. [7] proposed a solution for this problem, an anonymous ID-based GKA protocol, which can keep group members' anonymity to outside eavesdroppers; nevertheless, the protocol has some security flaws. This paper shows that Wan et al.'s GKA is insecure against colluding attack and their joining/leaving protocols do not guarantee forward and backward secrecy. We also propose a new forward secure ID-based GKA with anonymity from enhancing Wan et al.'s joining/leaving protocols. Our scheme provides forward and backward secrecy and is essentially just efficient as Wan et al.'s scheme.

show abstract

“…It utilized a binary key tree structure and achieves authentication with the ID-based cryptosystem, hence avoids management of certificates. Since then, many ID-based group key exchange protocols [7][8][9][10][11][12][13][14] using bilinear pairings have been proposed. All authors of the protocols above do not analyze whether their protocol can resist the attack of ephemeral private key revealing or not, and all these protocols utilize the bilinear pairings which have an expensive cost when computed.…”

Section: Introductionmentioning

confidence: 99%

A dynamic ID-based authenticated group key exchange protocol without pairings

Xie

2010

Wuhan Univ. J. Nat. Sci.

View full text Add to dashboard Cite

So far, most of the proposed group key exchange (GKE) protocols do not consider the attack when the adversary reveals the parties' ephemeral private keys without their long-term private keys, so these GKE protocols are insecure on this attack. In this paper, for resisting above attack, we propose a dynamic authenticated group key exchange (AGKE) protocol in the ID-based setting. Different from previous ID-based protocols, our protocol does not utilize bilinear pairings, which makes it more efficient. At last, we analyze the security of the protocol in the eCK (enhanced Canetti-Krawczyk) security model.Group key exchange (GKE) protocols are useful in many collaborative and distributed applications such as audio-video conferences, multiplayer game, multicast and broadcast communication, and so on. So far, many efficient GKE protocols have been proposed for various application environments. But the security of GKE protocols has been focused on less than protocols themselves. In 2001, Bresson et al [1][2][3] first formalized the security models of GKE protocols. Their security models defined the desired notions of security as authenticated key exchange (AKE) security and mutual authentication. But this security model does not consider the attack when the adversary reveals the parties' ephemeral secrets. In 2007, LaMacchia et al [4] proposed a security model (we note it as the eCK (enhanced Canetti-Krawczyk) model) and defined an AKE-security to resist the attack of revealing ephemeral secrets of users without their long-lived keys.In 1984, Shamir [5] proposed the idea of ID-based cryptosystem where the identity information of a user functioned as his public key. Since then, numerous ID-based group key exchange protocols have been developed. The first ID-based authenticated group key agreement protocol was proposed by Reddy et al [6] . It utilized a binary key tree structure and achieves authentication with the ID-based cryptosystem, hence avoids management of certificates. Since then, many ID-based group key exchange protocols [7][8][9][10][11][12][13][14] using bilinear pairings have been proposed. All authors of the protocols above

show abstract

Anonymous ID-Based Group Key Agreement for Wireless Networks

Cited by 19 publications

References 17 publications

A Pairing Free Certificateless Group Key Agreement Protocol with Constant Round

A Pairing Free Certificateless Group Key Agreement Protocol with Constant Round

Forward Secure ID-Based Group Key Agreement Protocol with Anonymity

A dynamic ID-based authenticated group key exchange protocol without pairings

Contact Info

Product

Resources

About