Presentation is loading. Please wait.

Presentation is loading. Please wait.

An Improvement on Authenticated Key Agreement Scheme Authors: Chin-Chen Chang and Shih-Yi Lin Source: 2007 International Conference on Intelligent Pervasive.

Published bySteven Newman Modified over 9 years ago

Similar presentations

Presentation on theme: "An Improvement on Authenticated Key Agreement Scheme Authors: Chin-Chen Chang and Shih-Yi Lin Source: 2007 International Conference on Intelligent Pervasive."— Presentation transcript:

1 An Improvement on Authenticated Key Agreement Scheme Authors: Chin-Chen Chang and Shih-Yi Lin Source: 2007 International Conference on Intelligent Pervasive Computing, 11-13 Oct. 2007, pp. 3 - 6 Presenter: Jung-wen Lo ( 駱榮問 )

2 2 Outline Introduction Notation Lee-Lee ’ s Scheme Weakness of Lee-Lee ’ s scheme Proposed scheme Conclusions & Comment  Improved Lee-Lee ’ s Scheme1  Improved Lee-Lee ’ s Scheme2  Improved Chang-Lin ’ s scheme

3 3 Introduction Key agreement types  Based on public key techniques Heavy computational overhead  Based on passwords Popular approach Simplicity & convenience Diffie-Hellman key agreement  Vulnerable to man-in-the-middle attack Narn-Yih Lee and Ming-Feng Lee, “ Further improvement on the modified authenticated key agreement scheme, ” Applied Mathematics and Computation, Vol. 157, pp. 729 – 733, 2004. Keon-Jik Lee and Byeong-Jik Lee, “ Cryptanalysis of the modified authenticated key agreement scheme, ” Applied Mathematics and Computation, Vol. 170, pp. 280 – 284, 2005.

4 4 Notation

5 5 Lee-Lee ’ s Scheme Alice (Q) Bob (Q) Random a X a =g aQ mod p K a =1 => abandon Random b Y b =g bQ mod p h(ID a,X a,K b ) ?= h(ID a,X a,K a ) XaXa YbYb h(ID a,X a,K a ) Key Establishment Phase Key Validation Phase h(ID b,Y b,K b ) h(ID b,Y b,K a ) ?= h(ID b,Y b,K b )

6 6 Weakness of Lee-Lee ’ s scheme Eve: Chose one pw’  Q’ Alice (Q) Bob (Q) Random a X a =g aQ mod p Random b Y b =g bQ mod p XaXa Y’ b =g mod p Key Establishment Phase Eve X’ a =g mod P YbYb K’ a =1 => abandon h(ID a,X a,K’ a ) Key Validation Phase

7 7 Proposed scheme Alice (A)Bob (B) Random a M 1 =(g a mod p)  h(ID a,Q,t a ) Check t a g a =M 1  h(ID a,Q,t a ) Random b,r K b =(g a ) b mod p M 2 =(g b mod p)  h(ID b,Q,t b ) M 3 =E[M 2,r] Kb M 1,t a M 2,M 3,t b M4M4 Check t b g b =M 2  h(ID b,Q,t b ) K a =(g b ) a mod p (M 2,r)=D[M 3 ] ka M 4 =E[r] ka r=D[M 4 ] kb

8 8 Conclusions & Comment Conclusions  Authenticated key agreement  Resistance to replay attack and off-line password attack  Perfect forward secrecy Comments  Improved Lee-Lee’s scheme  Improved Chang-Lin’s scheme Reduce the computation load

9 9 Improved Lee-Lee ’ s Scheme1 Alice (Q) Bob (Q) Random a X a =g aQ mod p K a =1 or g a/Q => abandon Random b Y b =g bQ mod p h(ID a,X a,K b ) ?= h(ID a,X a,K a ) XaXa YbYb h(ID a,X a,K a ) Key Establishment Phase Key Validation Phase h(ID b,Y b,K b ) h(ID b,Y b,K a ) ?= h(ID b,Y b,K b )

10 10 Improved Lee-Lee ’ s Scheme2 Alice (Q) Bob (Q) Random a X a =g a mod p K a =1 => abandon Random b Y b =g b mod p h(ID a ||Q||K b ) ?= h(Id a ||Q||K a ) X a  h(Q) Y b  h(Q) h(ID a ||Q||K a ) Key Establishment Phase Key Validation Phase h(ID b ||Q||K b ) h(ID b ||Q||K a ) ?= h(ID b ||Q || K b ) K a =(Y b ) a mod p =g ab mod p K b =(X a ) b mod p =g ab mod p

11 11 Improved Chang-Lin ’ s scheme Alice (A)Bob (B) Random a M 1 =(g a mod p)  h(ID a,Q,t a ) Check t a g a =M 1  h(ID a,Q,t a ) Random b,r K b =(g a ) b mod p M 2 =(g b mod p)  h(ID b,Q,t b ) M 3 =r  K b M 1,t a M 2,M 3,t b M4M4 Check t b g b =M 2  h(ID b,Q,t b ) K a =(g b ) a mod p r=M 3  k a M 4 =h(Q,r,k a ) M 4 ?=h(Q,r,k b ) Chang-Lin: E[.]+D[.] in A,B Ours:  +h(.) in A,B

12 12 Diffie-Hellman Key Agreement Protocol Alice Bob Random a X A =g a mod p K=(Y B ) a mod p =g ab mod p Random b Y B =g b mod p K=(X A ) b mod p =g ab mod p A XAXA YBYB

Download ppt "An Improvement on Authenticated Key Agreement Scheme Authors: Chin-Chen Chang and Shih-Yi Lin Source: 2007 International Conference on Intelligent Pervasive."

Similar presentations

CMSC 414 Computer (and Network) Security Lecture 22 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 22 Jonathan Katz.
A key agreement protocol using mutual Authentication for Ad-Hoc Networks IEEE 2005 Authors : Chichun Lo, Chunchieh Huang, Yongxin Huang Date : 2005_11_29.

A key agreement protocol using mutual Authentication for Ad-Hoc Networks IEEE 2005 Authors : Chichun Lo, Chunchieh Huang, Yongxin Huang Date : 2005_11_29.
11 Efficient and Secure Certificateless Authentication and Key Agreement Protocol for Hybrid P2P Network Authors: Z. B. Xu and Z. W. Li Source: The 2nd.

11 Efficient and Secure Certificateless Authentication and Key Agreement Protocol for Hybrid P2P Network Authors: Z. B. Xu and Z. W. Li Source: The 2nd.
Further improvement on the modified authenticated key agreement scheme Authors: N.Y. Lee and M.F. Lee Source: Applied Mathematics and Computation, Vol.157,

Further improvement on the modified authenticated key agreement scheme Authors: N.Y. Lee and M.F. Lee Source: Applied Mathematics and Computation, Vol.157,
多媒體網路安全實驗室 Improved Secure Anonymous Authentication Scheme for Roaming Service in Global Mobility Networks Date : 2012.10.24 Reporter : Hong Ji Wei Authors.

多媒體網路安全實驗室 Improved Secure Anonymous Authentication Scheme for Roaming Service in Global Mobility Networks Date : Reporter : Hong Ji Wei Authors.
KAIS T Distributed Collaborative Key Agreement and Authentication Protocols for Dynamic Peer Groups IEEE/ACM Trans. on Netw., Vol. 14, No. 2, April 2006.

KAIS T Distributed Collaborative Key Agreement and Authentication Protocols for Dynamic Peer Groups IEEE/ACM Trans. on Netw., Vol. 14, No. 2, April 2006.
Mutual Authentication and Key Exchange Protocol (MAKEP) Reporter: Jung-Wen Lo ( 駱榮問 ) Date: 2008/4/18.

Mutual Authentication and Key Exchange Protocol (MAKEP) Reporter: Jung-Wen Lo ( 駱榮問 ) Date: 2008/4/18.
1 Three-Party Encrypted Key Exchange Without Server Public-Keys C. L. Lin, H. M. Sun, M. Steiner, and T. Hwang IEEE COMMUNICATIONS LETTER, VOL. 5, NO.12,

1 Three-Party Encrypted Key Exchange Without Server Public-Keys C. L. Lin, H. M. Sun, M. Steiner, and T. Hwang IEEE COMMUNICATIONS LETTER, VOL. 5, NO.12,
1 Authenticated key agreement without using one-way hash functions Harn, L.; Lin, H.-Y. Electronics Letters, Volume: 37 Issue: 10, 10 May 2001 Presented.

1 Authenticated key agreement without using one-way hash functions Harn, L.; Lin, H.-Y. Electronics Letters, Volume: 37 Issue: 10, 10 May 2001 Presented.
1 Security analysis of an enhanced authentication key exchange protocol Authors : H.Y. Liu, G.B. Horng, F.Y. Hung Presented by F.Y. Hung Date : 2005/5/20.

1 Security analysis of an enhanced authentication key exchange protocol Authors : H.Y. Liu, G.B. Horng, F.Y. Hung Presented by F.Y. Hung Date : 2005/5/20.
A simple remote user authentication scheme 1. M. S. Hwang, C. C. Lee and Y. L. Tang, “A simple remote user authentication.

A simple remote user authentication scheme 1. M. S. Hwang, C. C. Lee and Y. L. Tang, “A simple remote user authentication.
A Server-aided Signature Scheme Based on Secret Sharing for Mobile Commerce Source: Journal of Computers, Vol.19, No.1, April 2008 Author: Chin-Ling Chen,

A Server-aided Signature Scheme Based on Secret Sharing for Mobile Commerce Source: Journal of Computers, Vol.19, No.1, April 2008 Author: Chin-Ling Chen,
Cryptography1 CPSC 3730 Cryptography Chapter 10 Key Management.

Cryptography1 CPSC 3730 Cryptography Chapter 10 Key Management.
CMSC 414 Computer and Network Security Lecture 17 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 17 Jonathan Katz.
電子商務與數位生活研討會 1 Further Security Enhancement for Optimal Strong-Password Authentication Protocol Tzung-Her Chen, Gwoboa Horng, Wei-Bin Lee,Kuang-Long Lin.

電子商務與數位生活研討會 1 Further Security Enhancement for Optimal Strong-Password Authentication Protocol Tzung-Her Chen, Gwoboa Horng, Wei-Bin Lee,Kuang-Long Lin.
A password authentication scheme with secure password updating SEC 期末報告 學號: 89321037 姓名:翁玉芬.

A password authentication scheme with secure password updating SEC 期末報告 學號: 姓名:翁玉芬.
Identity-based authenticated key agreement protocol based on Weil pairing N.P.Smart ELECTRONICS LETTERS 20 th June 2002 vol.38 No13 p.630-632 Present by.

Identity-based authenticated key agreement protocol based on Weil pairing N.P.Smart ELECTRONICS LETTERS 20 th June 2002 vol.38 No13 p Present by.
CMSC 414 Computer and Network Security Lecture 16 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 16 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.
Analysis of Key Agreement Protocols Brita Vesterås Supervisor: Chik How Tan.

Analysis of Key Agreement Protocols Brita Vesterås Supervisor: Chik How Tan.

Similar presentations

Ads by Google