格上基于口令的三方认证密钥交换协议

doi:10.11959/j.issn.1000-436x.2018237

Abstract

Abstract:

Password-based three-party authenticated key exchange protocol allow clients to establish a protected session key through a server over insecure channels.Most of the existing PAKE protocols on lattices were designed for the two parties,which could not be applied to large-scale communication systems,so a novel three-party PAKE protocol from lattices was proposed.The PAKE protocol was constructed by using a splittable public-key encryption scheme and an associated approximate smooth projective Hash function,and message authentication mechanism was introduced in the protocol to resist replay attacks.Compared with the similar protocols,the new protocol reduces the number of communication round and improves the efficiency and the security of protocol applications.

Key words: three-party key exchange, password authentication, LWE problem, provable security

CLC Number:

TP309

Jinxia YU,Huanhuan LIAN,Yongli TANG,Mengyao SHI,Zongqu ZHAO. Password-based three-party authenticated key exchange protocol from lattices[J]. Journal on Communications, 2018, 39(11): 87-97.

Figures/Tables 3

符号	说明
$r_{A_{1}}, r_{A_{2}}$	用户A和B的随机值
hk	Hash密钥
K	Hash密钥空间
hp	投射密钥
label	标签
f,g	函数
$δ_{S A}, δ_{S B}$	伪随机函数密钥
F	伪随机函数
ECC,ECC^?1	编码算法，译码算法
sk_A,B sk_BA	由用户A和B生成的会话密钥

References 22

[1]	BELLOIN S M , MERRITT M . Encrypted key exchange:passsword-based protocols secure against dictionarry attacks[C]// IEEE Symposium o on Research in Seccurity and Privacy. 1992: 72-84.
[2]	KATZ J , OSTROVSKY R , YU NG M . Efficient pa assword-authenticated key exchangge using human-memorable passworrds[M]. Advances in Cryptology-EUROCRYPT. 20001: 475-494.
[3]	ZHAO J , GU D . Provably secure three-party password-based authe enticated key eexchange protocol[J]. Information Sciiences, 2012,184(11): 310-323.
[4]	FARASH M S , ISLAM S H , OBAIDAT M S . A provably secure and efficient two-party password‐based explicit authennticated key exchan ge protocol resiistance to passworrd guessing attackss[J]. Concurrency ＆Computation Practice ＆ Experieence, 2015,27(17): 4897-4913.
[5]	ABLALLA M , BENHAMOUDA F , MACKENZ IIE P . Security of the J-PAKE passsword-authenticateed key exchangee protocol[C]// IE EE Symposium oon Security and Priivacy. 2015: 571-5887.
[6]	魏福山, 马建峰, 李光松 ,等. 标准模型下高效的三方口令认证密钥交换协议[[J]. 软件学报, 2016,27(9): 2389-2399.
	WEI F S , MA J F , LI G S ,et al. Efficient three-party password-based authenticatedd key exchange prootocol in the standaard model[J]. Journ nal of Software, 2016,27(9): 2389-2399.
[7]	KATZ J , VAIKUNTANATH AN V . Smooth proojective hashing and password-bassed authenticated key exchange froom lattices[M]. Advances in Cry yptology-ASIACRYPT. 2009： 636-652.
[8]	GENNARO R , LINDELL Y . A framework for password-based autheenticated key e exchange[C]// Internnational Conference on the Theory annd Applications of Cryptographic Techniques. 2003: 5524-543.
[9]	DING Y , FAN L . Efficient ppassword-based authenticated key exchange from lattices[C]// Seventth International Coonference on Compputational Intellligence and Securitty. 2012: 934-938.
[10]	GROCE A , KATZ J . A new fr ramework for efficcient password-baseed authenticated key exchange[C]// /Proceedings of thhe 17th ACM confe erence on Computer and communnications security. 2010:516-525.
[11]	叶茂, 胡学先, 刘文芬 . 基于格的三方口令认证密钥交换协议[J]. 电子与信息学报, 2013,35(6): 1376-1381.
	YE M , HU X X , LIU W F . Pas sword authenticateed key exchange protocol in the three party settingg based on lattices[J]. Journal of Eleectronics ＆ Infformation Technoloogy, 2013,35(6): 1376-1381.
[12]	PEIKERT C . Lattice cryptograpphy for the internet[M]. Post-Quantuum Cryptographyy. 2014： 197-219.
[13]	ZHANG J , ZHANG Z , DING J ,et al. Authentiicated key exchang ge from ideal latttices[M]. Advancees in Cryptology -EUROCRYPT. 2015： 719-751.
[14]	赵秀凤, 高海英, 王爱兰 . 基于 RLWE 的身份基认证密钥交换协议[J]. 计算机研究与发展, 2016,53(11): 2482-2490.
	ZHAO X F , GAO H Y , WANG A L . An identity-based auuthenticated key exchange protocoll from RLWE[J]. JJournal of Compute er Research and Development, 2016,53(11): 2482-2449
[15]	XU D Q , HE D B , CHOO K K R . Prov vably secure three-party passworrd authenticated keyy exchange protocool based on ring leaarning with erroor[C]// IACR Cryptoology ePrint Archivve. 2017:360.
[16]	ZHANG J , YU Y . Two-round PAKE fro om approximate SPH and instanntiations from latticces[C]// International Conference on the Theory and Application of Cryyptology and Infor mation Security. 2017: 37-67.
[17]	REGEV O , . On latticess,learning with errrors,random linear codes,and crypptography[C]// ACM Symposium on Theory of Compu uting. 2005: 84-993.
[18]	BE LLARE M , POIN TCHEVAL D , ROGAWAY P . Authen nticated key exchhange secure againnst dictionary attaccks[M]. Advances in Cryptologyy-EUROCRYPT. 2000： 139-155.
[19]	ABE M , CUI Y , IMAI H ,et al. Efficient hybrid encryption froom ID-based encr ryption[J]. Designs Codes ＆ Cryptograpphy, 2010,54(3): 205-240.
[20]	RAN C , HALEVI S , KATZ J . Chosen-ciiphertext security from identity-bbased encryption[C]// International Coonference on the Theory and Appplications of Cryptoographic Techniquees. 2004: 207-222.
[21]	CRAMER R , SHOUP V . Universal hassh proofs and a paradigm for adapptive chosen cipheertext secure publicc-key encryption[C]// Internationnal Conference on the Theory and Applications of Cryyptographic Tech hniques:Advances in Cryptology. 2002: 45-64.
[22]	KA TZ J , VAIKUNTANATHAN V . Round-optimal password-based authennticated key exchangge[M]. Theory of Cryyptography. 2011： 293-310.

Metrics

Recommended 0

No Suggested Reading articles found!

协议	类型	抵抗重放攻击	通信轮数	通信开销	服务器计算开销	用户计算开销
K-PAKE协议	3-party	否	3	2[(m+n+mn)lb q+3n]	O(nlbq)	O(n²lbq)
X-PAKE协议	3-party	否	3	7nlbq+9n+5	O(nlbnlbq)	O(nlbnlbq)
Z-PAKE协议	2-party	否	2	(2m+2n ₁)lbq+n	O(nlbnlbq)	O(nlbnlbq)
本文协议	3-party	是	2	2[(2m+2n ₁)lbq+2n]	O(mlbn)	O(mlbn)

Password-based three-party authenticated key exchange protocol from lattices

RichHTML

PDF

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 3

References 22

Related Articles 15

Metrics

Recommended 0

[1]	Huanhuan LIAN, Huiying HOU, Yunlei ZHAO. Post-quantum verifier-based three-party password authenticated key exchange protocol [J]. Journal on Communications, 2022, 43(4): 95-106.
[2]	Zhen LIU,Yiliang HAN,Xiaoyuan YANG,Shuguang LIU. Provable security signcryption scheme based on RLWE without trapdoor [J]. Journal on Communications, 2020, 41(6): 14-25.
[3]	Changgen PENG, Xiaoyu ZHANG, Hongfa DING, Shanhui YANG. Efficient signcryption scheme based on Cocks’ identity cryptosystem [J]. Journal on Communications, 2020, 41(12): 128-138.
[4]	Youliang TIAN,Qiuxian LI,Duo ZHANG,Linjie WANG. Provably secure rational delegation computation protocol [J]. Journal on Communications, 2019, 40(7): 135-143.
[5]	Caifen WANG,Li CHEN. Three-party password authenticated key agreement protocol with user anonymity based on lattice [J]. Journal on Communications, 2018, 39(2): 21-30.
[6]	Yong-hui ZHENG,Yuan-ji KANG,Chun-xiang GU,Hui DONG. Attribute-based fully homomorphic encryption scheme over rings [J]. Journal on Communications, 2017, 38(4): 55-63.
[7]	Hao-xing LI,Feng-hua LI,Cheng-gen SONG,Ya-long YAN. Provable data possession scheme with authentication [J]. Journal on Communications, 2016, 37(10): 117-127.
[8]	. Analysis and improvement of an identity-based signcryption [J]. Journal on Communications, 2015, 36(11): 174-179.
[9]	. Provably secure and efficient escrowable public key encryption schemes [J]. Journal on Communications, 2014, 35(7): 4-37.
[10]	. Forward-secure ciphertext-policy attribute-based encryption scheme [J]. Journal on Communications, 2014, 35(7): 5-45.
[11]	. Efficient and provably secure attribute-based online/ offline encryption schemes [J]. Journal on Communications, 2014, 35(7): 13-112.
[12]	Wen-hao LIU,Sheng-bao WANG,Zhen-fu CAO,Li-dong HAN. Provably secure and efficient escrowable public key encryption schemes [J]. Journal on Communications, 2014, 35(7): 33-37.
[13]	EIJiang-hong W,IUWen-fen L,UXue-xian H. Forward-secure ciphertext-policy attribute-based encryption scheme [J]. Journal on Communications, 2014, 35(7): 38-45.
[14]	Hai-ying MA,Guo-sun ZENG,GZhan-jun WAN,Wei WANG. Efficient and provably secure attribute-based online/offline encryption schemes [J]. Journal on Communications, 2014, 35(7): 104-112.
[15]	Yu-long YANG,Chang-gen PENG,Zhou ZHOU,Xiao-pei ZHANG. Edwards curves based security authentication protocol for mobile RFID systems [J]. Journal on Communications, 2014, 35(11): 132-138.