- 會議論文
Cryptanalysis of a password-based three-party Authenticated Key Exchange Protocol with a non-negligible Probability
並列摘要
Security proof is a key criterion to judge the satisfaction of the security requirements in a protocol. Recently, Chang et al. proposed a password-based three-party key exchange protocol without server's public key. The security goal of the proposed protocol is to eliminate various security threats. In this paper, we show that the proposed protocol is still suffered from the denial of service and the man-in-the-middle attacks. We also prove that the probability of an adversary breaking the AKE security of the protocol is non-negligible in the random oracle model.
延伸閱讀
- He, D., Zhang, Y., & Chen, J. (2014). Cryptanalysis of a Three-party Password-based Authenticated Key Exchange Protocol. International Journal of Network Security, 16(5), 393-396. https://doi.org/10.6633/IJNS.201409.16(5).10
- Tso, R. L., Liu, Y. S., & Wu, M. E. (2015). Cryptanalysis and Improvement of an Efficient Password Authentication Scheme Based on Smart Card. 電腦學刊, 25(4), 35-43. https://www.airitilibrary.com/Article/Detail?DocID=19911599-201501-201501270058-201501270058-35-43
- Cheng, K. M., Chang, T. Y., & Lo, J. W. (2010). Cryptanalysis of Security Enhancement for a Modified Authenticated Key Agreement Protocol. International Journal of Network Security, 11(1), 55-57. https://doi.org/10.6633/IJNS.201007.11(1).08
- Zhu, H., Zhang, Y., Wang, X., & Wang, L. (2021). Partitioned Group Password-based Authenticated Key Exchange with Privacy Protection. International Journal of Network Security, 23(1), 116-125. https://doi.org/10.6633/IJNS.202101_23(1).14
- Zhu, H. F., Zhang, Y. F., Xia, Y., & Li, H. Y. (2016). Password-Authenticated Key Exchange Scheme Using Chaotic Maps towards a New Architecture in Standard Model. International Journal of Network Security, 18(2), 326-334. https://doi.org/10.6633/IJNS.201603.18(2).14