Premium
A generic framework for constructing cross‐realm C2C‐PAKA protocols based on the smart card
Author(s) -
Xu Jing,
Zhu WenTao,
Jin WenTing
Publication year - 2011
Publication title -
concurrency and computation: practice and experience
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 0.309
H-Index - 67
eISSN - 1532-0634
pISSN - 1532-0626
DOI - 10.1002/cpe.1616
Subject(s) - computer science , realm , password , protocol (science) , computer security , key (lock) , session key , authentication (law) , smart card , s/key , authentication protocol , mutual authentication , computer network , encryption , medicine , alternative medicine , pathology , political science , law
A cross‐realm client‐to‐client password‐authenticated key agreement (C2C‐PAKA) protocol allows network clients from different realms managed by different servers to agree on a session key in an authentic manner based on easily memorizable passwords. In this paper, we present a generic framework for constructing a cross‐realm C2C‐PAKA protocol from any secure smart card‐based password authentication (PA‐SC) protocol. The security proof of our construction can be derived from the underlying PA‐SC protocol employing the same assumptions. Our generic framework appears to be the first one with provable security. In addition, compared with similar protocols, the instantiation of our construction achieves improved efficiency. Copyright © 2010 John Wiley & Sons, Ltd.