SAS-Based Group Authentication and Key Agreement Protocols

New trends in consumer electronics have created a strong demand for fast, reliable and user-friendly key agreement protocols. However, many key agreement protocols are secure only against passive attacks. Therefore, message authentication is often unavoidable in order to achieve security against active adversaries. Pasini and Vaudenay were the first to propose a new compelling methodology for message authentication. Namely, their two-party protocol uses short authenticated strings (SAS) instead of pre-shared secrets or public-key infrastructure that are classical tools to achieve authenticity. In this article, we generalise this methodology for multi-party settings. We give a new group message authentication protocol that utilises only limited authenticated communication and show how to combine this protocol with classical key agreement procedures. More precisely, we describe how to transform any group key agreement protocol that is secure against passive attacks into a new protocol that is secure against active attacks.


Editor(s):
Cramer, Ronald
Published in:
Public Key Cryptography - PKC '08, 11th International Workshop on Practice and Theory in Public-Key Cryptography, 197-213
Presented at:
Public Key Cryptography - PKC '08, 11th International Workshop on Practice and Theory in Public-Key Cryptography, Barcelona, Spain, 9-12 March 2008
Year:
2008
Publisher:
Springer
Keywords:
Laboratories:




 Record created 2008-03-12, last modified 2018-03-17

n/a:
Download fulltext
PDF

Rate this document:

Rate this document:
1
2
3
 
(Not yet reviewed)