Open AccessPrivacy failure in the public‐key distance‐bounding protocols
Author(s) -
Vaudenay Serge
Publication year - 2016
Publication title -
iet information security
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 0.308
H-Index - 34
eISSN - 1751-8717
pISSN - 1751-8709
DOI - 10.1049/iet-ifs.2014.0616
Subject(s) - gas meter prover , computer science , adversary , protocol (science) , public key cryptography , computer security , key (lock) , bounding overwatch , cryptographic protocol , theoretical computer science , cryptography , mathematics , encryption , mathematical proof , artificial intelligence , medicine , geometry , alternative medicine , pathology
Public‐key distance bounding protocols are well suited to defeat relay attacks in proximity access control systems when the author assume no prior shared key. At AsiaCCS 2014, Gambs, Onete, and Robert designed such a protocol with privacy protection for the prover. That is, the protocol hides the identity of the prover to active adversaries and the prover remains anonymous. In this study the author contradicts the result on this protocol by proving that an active adversary can easily identify one prover out of two possible ones. At WISEC 2013, Hermans, Peeters, and Onete proposed another protocol which is proven to protect the privacy of the prover. In this study the author complete their results and show that the protocol does not protect it in a strong sense. That is, if the adversary can corrupt the provers, then privacy is not guaranteed any more.