Provably secure CL-KEM-based password-authenticated key exchange protocol Online publication date: Thu, 05-Jan-2017
by Junhan Yang; Bo Su; Chaoping Guo; Wenlin Han; Yang Xiao
International Journal of Sensor Networks (IJSNET), Vol. 23, No. 2, 2017
Abstract: Traditional password-based authentication protocols are vulnerable to various password-related attacks, while public key cryptography (PKC) is expensive to manage certificates. Moreover, the traditional identity-based cryptography suffers to key escrow. To solve the above problems, we propose a password-based authentication and key exchange (AKE) protocol. The protocol is based on certificateless key encapsulation mechanism (CL-KEM) using the three-party setting. The security of this protocol is provable under the decisional Diffie-Hellman (DDH) assumption. Security analysis shows that this protocol can achieve mutual authentication and forward security, and it can resist various password-related attacks.
Existing subscribers:
Go to Inderscience Online Journals to access the Full Text of this article.
If you are not a subscriber and you just want to read the full contents of this article, buy online access here.Complimentary Subscribers, Editors or Members of the Editorial Board of the International Journal of Sensor Networks (IJSNET):
Login with your Inderscience username and password:
Want to subscribe?
A subscription gives you complete access to all articles in the current issue, as well as to all articles in the previous three years (where applicable). See our Orders page to subscribe.
If you still need assistance, please email subs@inderscience.com