SAS-based Authenticated Key Agreement

Pasini, Sylvain; Vaudenay, Serge

doi:10.1007/11745853_26

Pasini, Sylvain; Vaudenay, Serge

2006

Download

Formats

Format
BibTeX
MARC
MARCXML
DublinCore
EndNote
NLM
RefWorks
RIS

Files

Abstract

Key agreement protocols are frequently based on the Diffie-Hellman protocol but require authenticating the protocol messages in two ways. This can be made by a cross-authentication protocol. Such protocols, based on the assumption that a channel which can authenticate short strings is available (SAS-based), have been proposed by Vaudenay. In this paper, we survey existing protocols and we propose a new one. Our proposed protocol requires three moves and a single SAS to be authenticated in two ways. It is provably secure in the random oracle model. We can further achieve security with a generic construction (e.g. in the standard model) at the price of an extra move. We discuss applications such as secure peer-to-peer VoIP

Details

Title SAS-based Authenticated Key Agreement

Author(s) Pasini, Sylvain ; Vaudenay, Serge

Published in Public Key Cryptography - PKC 2006

Series Lecture Notes in Computer Science, 3958

Pages 395-409

Conference The 9th International Conference on Theory and Practice of Public Key Cryptography - PKC '06, New-York, NY, U.S.A., April 24-26, 2006

Date 2006

Publisher Springer

Keywords

SAS; key agreement authentification; Diffie-Hellman protocol; random oracle model; network security

DOI https://doi.org/10.1007/11745853_26

Other identifier(s) DAR: 8964
View record in Web of Science

Laboratories LASEC

Record Appears in Scientific production and competences > I&C - School of Computer and Communication Sciences > IINFCOM > LASEC - Security and Cryptography Laboratory
Peer-reviewed publications
Conference Papers
Work produced at EPFL
Published

Record creation date 2007-01-18

Actions

Preview

Select file: