Design of Two-Party Authenticated Key Agreement Protocol Based on ECC and Self-Certified Public Keys

Islam, SK Hafizul; Biswas, Gautam

doi:10.1007/s11277-015-2375-5

Cited by 48 publications

(40 citation statements)

References 41 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In this study, we evaluate escrow-free alternatives that might be adequate for the IoT scenario, showing that the SMQV protocol combined with implicit certificates is an appealing alternative for tackling this issue: this combination not only avoids the transmission costs of full-fledged PKIbased certificates, but also leads to a scheme that is more efficient than similar-purpose lightweight solutions. Actually, even though we were able to identify in the literature recently proposed AKA schemes that are potentially more efficient than SMQV (namely, [39] , [43] and [40] ), they display severe security flaws, which indicates that bringing significant improvements over SMQV is not an easy task. …”

Section: Final Considerationsmentioning

confidence: 94%

“…Finally, with a growing interest in bringing efficient and escrowless AKA solutions to the context of WSNs, a few pairing-free schemes based on the certificate-less paradigm appeared in the literature in the last few years [38][39][40][41][42][43] . Most of them involve more computation than traditional and well analyzed AKA pro- tocols, such as MQV [22] and its variants (e.g., HMQV [44] and SMQV [23] ).…”

Section: Related Workmentioning

confidence: 99%

“…Nevertheless, these solutions remain potentially more energy-efficient than traditional MQV-like schemes due the reduced size of the messages exchanged between nodes, which is a direct advantage of the certificate-less paradigm over PKI-based solutions. Unfortunately, however, our analysis of the most efficient solutions among them (namely, [39] , [43] and [40] ) shows that they are actually flawed (see Appendix A ), allowing attackers to impersonate any user in the network.…”

Section: Related Workmentioning

confidence: 99%

“…In this appendix, we describe impersonation attacks against three recently proposed AKA protocols: the schemes described in [43] , [39] and [40] . On the one hand, the analysis of [43] is quite straightforward: its efficiency comes from the fact that the scheme does not include any validation of the public keys by the communicating entities, assuming simply that those keys are published somehow; since it does not include any kind of certificate or any other manner to prove the validity of such keys, the resulting protocol is left wide open for impersonation attacks.…”

Section: Appendix a Impersonation Attacks Against Two Aka Schemesmentioning

confidence: 99%

See 3 more Smart Citations

Lightweight and escrow-less authenticated key agreement for the internet of things

Simplício

Silva

Alves

et al. 2017

Computer Communications

View full text Add to dashboard Cite

a b s t r a c tSecurity is essential for wide wireless sensor network (WSN) deployments, such as the Internet of Things (IoT). However, the resource-constrained nature of sensors severely restricts the cryptographic algorithms and protocols that can be used in such platforms. Such restrictions apply especially to authenticated key agreement (AKA) protocols for bootstrapping keys between authorized nodes: in traditional networks, such schemes involve the transmission of quite large certificates and the execution of memoryand processing-intensive cryptographic algorithms, which are not suitable for WSNs. Whereas lightweight WSN-oriented schemes also exist, most of them focus on small deployments where key-escrow is possible (i.e., a fully trusted authority knows the private keys of all nodes). Aiming to identify AKA solutions suitable for the IoT scenario, in this article we assess lightweight and escrow-free schemes, evaluating their security and performance in terms of processing time and energy consumption in the TelosB platform. Besides proving that some very efficient schemes are actually flawed, we show that the combination of SMQV (strengthened-Menezes-Qu-Vanstone) with implicit certificates leads to a secure and lightweight AKA scheme.

show abstract

Section: Final Considerationsmentioning

confidence: 94%

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Appendix a Impersonation Attacks Against Two Aka Schemesmentioning

confidence: 99%

See 2 more Smart Citations

Lightweight and escrow-less authenticated key agreement for the internet of things

Simplício

Silva

Alves

et al. 2017

Computer Communications

View full text Add to dashboard Cite

show abstract

“…The AKE schemes in identity-based setup using elliptic curves were analyzed, for example, in [32,33]. Those 2-round schemes are still vulnerable to eKCI attacks (actually the first one does not withstand the regular KCI as well).…”

Section: Previous Workmentioning

confidence: 99%

Deniable Key Establishment Resistance against eKCI Attacks

Krzywiecki

Wlisłocki

2017

Security and Communication Networks

View full text Add to dashboard Cite

In extended Key Compromise Impersonation (eKCI) attack against authenticated key establishment (AKE) protocols the adversary impersonates one party, having the long term key and the ephemeral key of the other peer party. Such an attack can be mounted against variety of AKE protocols, including 3-pass HMQV. An intuitive countermeasure, based on BLS (Boneh-Lynn-Shacham) signatures, for strengthening HMQV was proposed in literature. The original HMQV protocol fulfills the deniability property: a party can deny its participation in the protocol execution, as the peer party can create a fake protocol transcript indistinguishable from the real one. Unfortunately, the modified BLS based version of HMQV is not deniable. In this paper we propose a method for converting HMQV (and similar AKE protocols) into a protocol resistant to eKCI attacks but without losing the original deniability property. For that purpose, instead of the undeniable BLS, we use a modification of Schnorr authentication protocol, which is deniable and immune to ephemeral key leakages.

show abstract

Efficient privacy‐preserving authentication scheme for roaming consumer in global mobility networks

Ostad-Sharif

Babamohammadi

Abbasinezhad-Mood

et al. 2019

Int J Communication

View full text Add to dashboard Cite

The advancements in wireless technologies have paved the way for offering seamless services to mobile consumers in global mobility networks (GLOMONETs). Nonetheless, since in these networks, the communication channels are open and public, devising proper measures to protect the security and privacy of exchanging messages is critical. Moreover, because of the energy and computational power limitations of the mobile devices, a security mechanism should put the least possible burden on these devices. To do so, plenty authentication schemes have been proposed in recent years to be employed in the context of GLOMONETs. Quite recently, four interesting authentication and key agreement schemes have been put forward, which have improved the efficiency and security of their previous related schemes. Besides the nice contributions of these four, in this paper, it is first indicated that all of them are vulnerable to the known session-specific information attack. Then, a new chaotic map-based authentication scheme is presented that not only is secure against the aforementioned attack but also has less computational complexity and communication overhead. The comprehensive descriptive discussion on security alongside the formal verification of security using the widely accepted ProVerif tool show that our scheme is secure against the known attacks, and the comparative performance analysis demonstrates its betterment for the constrained-resource mobile devices.

show abstract

Design of Two-Party Authenticated Key Agreement Protocol Based on ECC and Self-Certified Public Keys

Cited by 48 publications

References 41 publications

Lightweight and escrow-less authenticated key agreement for the internet of things

Lightweight and escrow-less authenticated key agreement for the internet of things

Deniable Key Establishment Resistance against eKCI Attacks

Efficient privacy‐preserving authentication scheme for roaming consumer in global mobility networks

Contact Info

Product

Resources

About