Premium
On ‘a simple three‐party password‐based key exchange protocol’
Author(s) -
Lin ChingYing,
Hwang Tzonelih
Publication year - 2011
Publication title -
international journal of communication systems
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 0.344
H-Index - 49
eISSN - 1099-1131
pISSN - 1074-5351
DOI - 10.1002/dac.1304
Subject(s) - computer science , password , key exchange , s/key , computer security , protocol (science) , key (lock) , simple (philosophy) , zero knowledge password proof , oakley protocol , password cracking , password strength , computer network , one time password , public key cryptography , encryption , medicine , philosophy , alternative medicine , epistemology , pathology
In 2009, Huang ( Int. J. Commun. Syst. , 22 , 857–862) proposed a simple and efficient three‐party password‐based key exchange protocol without server's public key. This work shows that the protocol could be vulnerable to an undetectable online password guessing attack. Furthermore, an improved protocol is proposed to avoid the attack. Copyright © 2011 John Wiley & Sons, Ltd.