Publications-Periodical Articles

Article View/Open

Publication Export

Google ScholarTM

NCCU Library

Citation Infomation

Related Publications in TAIR

題名 Security analysis and improvements of a communication-efficient three-party password authenticated key exchange protocol
作者 左瑞麟
Tso, Raylin
貢獻者 資科系
關鍵詞 Dictionary attack; Key exchange; Password-based authentication; Security analysis
日期 2013.11
上傳時間 20-Oct-2014 18:21:01 (UTC+8)
摘要 Three-party password-authenticated key exchange (3PAKE) protocols allow two clients to establish secure communication channels over a public network merely by sharing a human-memorable (low-entropy) password with a trusted server. In this paper, we first show that the 3PAKE protocol introduced by Chang, Hwang, and Yang is insecure against even passive attackers. Thereafter, we propose two kinds of improvement that can remedy the security flaw in their protocol. Finally, we present simulations to measure the execution time to show the efficiency of our two improvements.
關聯 Journal of Supercomputing, 66(2), 863-874
資料類型 article
DOI http://dx.doi.org/10.1007/s11227-013-0917-8
dc.contributor 資科系en_US
dc.creator (作者) 左瑞麟zh_TW
dc.creator (作者) Tso, Raylinen_US
dc.date (日期) 2013.11en_US
dc.date.accessioned 20-Oct-2014 18:21:01 (UTC+8)-
dc.date.available 20-Oct-2014 18:21:01 (UTC+8)-
dc.date.issued (上傳時間) 20-Oct-2014 18:21:01 (UTC+8)-
dc.identifier.uri (URI) http://nccur.lib.nccu.edu.tw/handle/140.119/70677-
dc.description.abstract (摘要) Three-party password-authenticated key exchange (3PAKE) protocols allow two clients to establish secure communication channels over a public network merely by sharing a human-memorable (low-entropy) password with a trusted server. In this paper, we first show that the 3PAKE protocol introduced by Chang, Hwang, and Yang is insecure against even passive attackers. Thereafter, we propose two kinds of improvement that can remedy the security flaw in their protocol. Finally, we present simulations to measure the execution time to show the efficiency of our two improvements.en_US
dc.language.iso en_US-
dc.relation (關聯) Journal of Supercomputing, 66(2), 863-874en_US
dc.subject (關鍵詞) Dictionary attack; Key exchange; Password-based authentication; Security analysisen_US
dc.title (題名) Security analysis and improvements of a communication-efficient three-party password authenticated key exchange protocolen_US
dc.type (資料類型) articleen
dc.identifier.doi (DOI) 10.1007/s11227-013-0917-8en_US
dc.doi.uri (DOI) http://dx.doi.org/10.1007/s11227-013-0917-8en_US