Premium
Universally composable three‐party password‐authenticated key exchange with contributiveness
Author(s) -
Hu Xuexian,
Zhang Zhenfeng,
Zhang Qihui
Publication year - 2015
Publication title -
international journal of communication systems
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 0.344
H-Index - 49
eISSN - 1099-1131
pISSN - 1074-5351
DOI - 10.1002/dac.2746
Subject(s) - computer science , authenticated key exchange , password , computer security , key exchange , session key , composability , key (lock) , universal composability , authentication (law) , protocol (science) , computer network , cryptographic protocol , cryptography , public key cryptography , distributed computing , encryption , medicine , alternative medicine , pathology
Summary Three‐party password‐authenticated key exchange (3PAKE) allows two clients, each sharing a password with a trusted server, to establish a session key with the help of the server. It is a quite practical mechanism for establishing secure channels in a large communication network. However, most current 3PAKE protocols are analyzed in security models that do not adequately address protocol composition problem. In this paper, an ideal functionality for 3PAKE within the universal composability framework is defined, which not only provides security guarantees under arbitrary composition with other protocols but also achieves contributiveness and explicit authentication. Moreover, we propose a generic construction of contributory 3PAKE protocol and prove that it securely realizes the ideal functionality in the static corruption model. Copyright © 2014 John Wiley & Sons, Ltd.