On the Security of HB# against a Man-in-the-Middle Attack

Ouafi, Khaled; Overbeck, Raphael; Vaudenay, Serge

doi:10.1007/978-3-540-89255-7_8

Ouafi, Khaled; Overbeck, Raphael; Vaudenay, Serge

2008

Download

Formats

Format
BibTeX
MARC
MARCXML
DublinCore
EndNote
NLM
RefWorks
RIS

Files

Abstract

At EuroCrypt ’08, Gilbert, Robshaw and Seurin proposed HB# to improve on HB+ in terms of transmission cost and security against man-in-the-middle attacks. Although the security of HB# is formally proven against a certain class of man- in-the-middle adversaries, it is only conjectured for the general case. In this paper, we present a general man-in-the-middle attack against HB# and Random-HB#, which can also be applied to all anterior HB-like protocols, that recovers the shared secret in 225 or 220 authentication rounds for HB# and 234 or 228 for Random-HB#, depending on the parameter set. We further show that the asymptotic complexity of our attack is polynomial under some conditions on the parameter set which are met on one of those proposed in [8].

Details

Title On the Security of HB# against a Man-in-the-Middle Attack

Author(s) Ouafi, Khaled ; Overbeck, Raphael ; Vaudenay, Serge

Published in Advances in Cryptology - ASIACRYPT 2008

Series Lecture Notes in Computer Science, 5350

Pages 108-124

Conference ASIACRYPT 2008, Melbourne, Australia, December 7 - 11, 2008

Date 2008

Publisher Berlin, Springer

Keywords

HB; authentication protocols; RFID

DOI https://doi.org/10.1007/978-3-540-89255-7_8

Other identifier(s) View record in Web of Science

Additional link URL

Laboratories LASEC

Record Appears in Scientific production and competences > I&C - School of Computer and Communication Sciences > IINFCOM > LASEC - Security and Cryptography Laboratory
Peer-reviewed publications
Conference Papers
Work produced at EPFL
Published

Record creation date 2008-12-11

Actions

Preview

Select file: