Three-party password-based authenticated key exchange protocol based on the computational Diffie-Hellman assumption

Sahi, Aqeel and Lai, David and Li, Yan (2018) Three-party password-based authenticated key exchange protocol based on the computational Diffie-Hellman assumption. International Journal of Communication Networks and Distributed Systems, 21 (4). pp. 560-581. ISSN 1754-3916


Abstract

The three-party password-based authenticated key exchange protocol gives two clients the ability to negotiate a session key through a trusted server over a public channel. Most of the proposed 3PAKE protocols use public keys to guarantee identities; however, the sharing of public keys may lead to various types of attacks, such as a man-in-the-middle attack, which allows an attacker to simply intercept and insert traffic traversing a network. In this paper, we briefly describe an updated three-party password-based authenticated key exchange protocol and analyse its security. The proposed TPAKE protocol does not share plain-text data. Data shared between the parties are either hashed or encrypted. Using the random oracle model, the security of the proposed TPAKE protocol is formally proven under the computational Diffie-Hillman assumption. Furthermore, the analyses included in this paper show that our protocol can ensure perfect forward secrecy and can also resist many types of common attacks.


Statistics for USQ ePrint 42699
Statistics for this ePrint Item
Item Type: Article (Commonwealth Reporting Category C)
Refereed: Yes
Item Status: Live Archive
Additional Information: Permanent restricted access to published version in accordance with the copyright policy of the publisher.
Faculty/School / Institute/Centre: Historic - Faculty of Health, Engineering and Sciences - School of Agricultural, Computational and Environmental Sciences (1 Jul 2013 - 5 Sep 2019)
Faculty/School / Institute/Centre: Historic - Faculty of Health, Engineering and Sciences - School of Agricultural, Computational and Environmental Sciences (1 Jul 2013 - 5 Sep 2019)
Date Deposited: 12 Jul 2021 01:51
Last Modified: 09 Sep 2021 04:06
Uncontrolled Keywords: authentication; cryptography; key exchange protocols; password-based; three-party; Diffie-Hellman; 2PAKE protocols; 3PAKE protocols; random oracle model; communication networks; distributed systems.
Fields of Research (2008): 08 Information and Computing Sciences > 0899 Other Information and Computing Sciences > 089999 Information and Computing Sciences not elsewhere classified
Fields of Research (2020): 46 INFORMATION AND COMPUTING SCIENCES > 4604 Cybersecurity and privacy > 460403 Data security and protection
46 INFORMATION AND COMPUTING SCIENCES > 4604 Cybersecurity and privacy > 460401 Cryptography
46 INFORMATION AND COMPUTING SCIENCES > 4604 Cybersecurity and privacy > 460402 Data and information privacy
Identification Number or DOI: https://doi.org/10.1504/IJCNDS.2018.095373
URI: http://eprints.usq.edu.au/id/eprint/42699

Actions (login required)

View Item Archive Repository Staff Only