| 对客户到客户的口令认证密钥协商协议的密码分析和改进(英文) |
| |
| 引用本文: | 殷胤,李宝.对客户到客户的口令认证密钥协商协议的密码分析和改进(英文)[J].中国科学院研究生院学报,2006,23(6):793-801. |
| |
| 作者姓名: | 殷胤 李宝 |
| |
| 作者单位: | 信息安全国家重点实验室,中国科学院研究生院,北京,100049 |
| |
| 摘 要: | 大多数基于口令的密钥协商协议都只考虑如何在客户与服务器之间协商密钥。 客户到客户口令认证密钥协商协议考虑如何在两个客户之间协商密钥,而这两个客户 只分别与各自的服务器共享口令。在?]中, Jin Wook Byun 等提出了两个协议,分别称为跨域C2C-PAKE协议,和单服务器C2C-PAKE协议。最近 针对这两个协议,提出了一系列攻击和改进方案。在本文中,我们指出跨域C2C-PAKE 协议及其所有的改进方案都是不安全的。我们设计了一个新的跨域C2C-PAKE协议。 它可以抵抗已知的所有攻击。
|
| 关 键 词: | 口令 密钥协商 客户到客户 跨域 |
| 文章编号: | 1002-1175(2006)06-0793-09 |
| 修稿时间: | 2005年12月22 |
Cryptanalysis and Improvement of Client-to-Client Password Authenticated Key Exchange Protocol |
| |
| YIN Yin,LI Bao.Cryptanalysis and Improvement of Client-to-Client Password Authenticated Key Exchange Protocol[J].Journal of the Graduate School of the Chinese Academy of Sciences,2006,23(6):793-801. |
| |
| Authors: | YIN Yin LI Bao |
| |
| Institution: | State Key Laboratory of Information Security(Graduate School of Chinese Academy of Sciences), Beijing 100049, China |
| |
| Abstract: | Most password-based key exchange protocols consider how to exchange a session key between a client and a server.Client-to-Client password authenticated key exchange protocol considers the scenario where two clients want to establish a session key,but they only share their passwords with their own servers. In Ref.1],Jin Wook Byun et al proposed two such protocols called cross-realm C2C-PAKE and single-server C2C-PAKE.Recently,some flaws of these two protocols are found and some improvements are suggested.In this paper,we show that the cross-realm C2C-PAKE protocol and its all improved forms are still insecure.And we also present a new cross-realm C2C-PAKE protocol which is resistant to all known attacks. |
| |
| Keywords: | password key exchange client-to-client cross realm |
| 本文献已被 CNKI 万方数据 等数据库收录! |
| 点击此处可从《中国科学院研究生院学报》浏览原始摘要信息 |
| 点击此处可从《中国科学院研究生院学报》下载免费的PDF全文 |
