Open AccessCryptanalysis of the Dragonfly key exchange protocol
Author(s) -
Clarke Dylan,
Hao Feng
Publication year - 2014
Publication title -
iet information security
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 0.308
H-Index - 34
eISSN - 1751-8717
pISSN - 1751-8709
DOI - 10.1049/iet-ifs.2013.0081
Subject(s) - computer science , computer security , s/key , password , key (lock) , key exchange , zero knowledge password proof , cryptanalysis , the internet , one time password , computer network , password strength , cryptography , public key cryptography , world wide web , encryption
Dragonfly is a password authenticated key exchange protocol that has been submitted to the Internet engineering task force as a candidate standard for general internet use. The authors analysed the security of this protocol and devised an attack that is capable of extracting both the session key and password from an honest party. This attack was then implemented and experiments were performed to determine the time‐scale required to successfully complete the attack.