Provably Authenticated Group Diie-hellman Key Exchange

نویسندگان

  • Emmanuel Bresson
  • Olivier Chevassut
  • David Pointcheval
چکیده

Group Diie-Hellman protocols for Authenticated Key Exchange (AKE) are designed to provide a pool of players with a shared secret key which may later be used, for example, to achieve multicast message integrity. Over the years, several schemes have been ooered. However, no formal treatment for this cryptographic problem has ever been suggested. In this paper, we present a security model for this problem and use it to precisely deene AKE (with \implicit" authentication) as the fundamental goal, and the entity-authentication goal as well. We then deene in this model the execution of an authenticated group Diie-Hellman scheme and prove its security.

برای دانلود رایگان متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

Provably Authenticated Group Diie-hellman Key Exchange the Dynamic Case (extended Abstract)

Dynamic group Diie-Hellman protocols for Authenticated Key Exchange (AKE) are designed to work in a scenario in which the group membership is not known in advance but where parties may join and may also leave the multicast group at any given time. While several schemes have been proposed to deal with this scenario no formal treatment for this cryptographic problem has ever been suggested. In th...

متن کامل

Provably Secure Password-authenticated Key Exchange Using Diie-hellman

When designing password-authenticated key exchange protocols (as opposed to key exchange protocols authenticated using cryptographically secure keys), one must not allow any information to be leaked that would allow veriication of the password (a weak shared key), since an attacker who obtains this information may be able to run an oo-line dictionary attack to determine the correct password. We...

متن کامل

Authenticated Session Keys and Their Server-aided Computation

Key exchange is one of the elementary prerequisites for secure communications. This paper rst discusses some desirable properties of key exchange protocols, and then presents a set of protocols for Diie-Hellman based authenticated key exchange. This paper then considers a server-aided approach to fast computation of shared secrets, which may be useful for smart card implementation of key exchange.

متن کامل

On the Security of the SPEKE Password-Authenticated Key Exchange Protocol

In the most strict formal deenition of security for password-authenticated key exchange, an adversary can test at most one password per impersonation attempt. We propose a slightly relaxed deenition which restricts an adversary to testing at most a constant number of passwords per impersonation attempt. This deenition seems useful, since there is currently a popular password-authenticated key e...

متن کامل

Dynamic Group Diffie - Hellman Key Exchange under Standard Assumptions ( Ext . abstract )

authenticated Diffie-Hellman key exchange allows two principals communicating over a public network, and each holding public/private keys, to agree on a shared secret value. In this paper we study the natural extension of this cryptographic problem to a group of principals. We begin from existing formal security models and refine them to incorporate major missing details (e.g., strong-corruptio...

متن کامل

ذخیره در منابع من

ذخیره در منابع من قبلا به منابع من ذحیره شده

{@ msg_add @}


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

عنوان ژورنال:

دوره   شماره 

صفحات  -

تاریخ انتشار 2001