Security Improvement on Wu and Zhu's Protocol for Password-Authenticated Group Key Exchange
スポンサーリンク
概要
- 論文の詳細を見る
A group key exchange (GKE) protocol allows a group of parties communicating over a public network to establish a common secret key. As group-oriented applications gain popularity over the Internet, a number of GKE protocols have been suggested to provide those applications with a secure multicast channel. In this work, we investigate the security of Wu and Zhus password-authenticated GKE protocol presented recently in FC08. Wu and Zhus protocol is efficient, supports dynamic groups, and can be constructed generically from any password-authenticated 2-party key exchange protocol. However, despite its attractive features, the Wu-Zhu protocol should not be adopted in its present form. Due to a flaw in its design, the Wu-Zhu protocol fails to achieve authenticated key exchange. We here report this security problem with the Wu-Zhu protocol and show how to solve it.
- (社)電子情報通信学会の論文
- 2011-02-01
著者
-
Paik Juryon
School Of Information And Communication Engineering Sungkyunkwan University
-
NAM Junghyun
Department of Computer Science, Konkuk University
-
WON Dongho
School of Information and Communication Engineering, Sungkyunkwan University
-
Won Dongho
School Of Information And Communication Engineering Sungkyunkwan University
-
Nam Junghyun
Department Of Computer Science Konkuk University
関連論文
- Security Improvement on Wu and Zhu's Protocol for Password-Authenticated Group Key Exchange
- Weakness in Jung et al.'s ID-Based Conference Key Distribution Scheme(Protocol, Cryptography and Information Security)
- Attack on the Sun-Chen-Hwang's Three-Party Key Agreement Protocols Using Passwords(Protocol, Cryptography and Information Security)
- A Privacy-Protecting Authentication Scheme for Roaming Services with Smart Cards
- An Enhanced Secure Authentication Scheme with Anonymity for Wireless Environments