Simple password-based three-party authenticated key exchange without server public keys

Tian Fu Lee, Tzone-Lih Hwang

Research output: Contribution to journalArticle

43 Citations (Scopus)

Abstract

Password-based three-party authenticated key exchange protocols are extremely important to secure communications and are now extensively adopted in network communications. These protocols allow users to communicate securely over public networks simply by using easy-to-remember passwords. In considering authentication between a server and user, this study categorizes password-based three-party authenticated key exchange protocols into explicit server authentication and implicit server authentication. The former must achieve mutual authentication between a server and users while executing the protocol, while the latter only achieves authentication among users. This study presents two novel, simple and efficient three-party authenticated key exchange protocols. One protocol provides explicit server authentication, and the other provides implicit server authentication. The proposed protocols do not require server public keys. Additionally, both protocols have proven secure in the random oracle model. Compared with existing protocols, the proposed protocols are more efficient and provide greater security.

Original languageEnglish
Pages (from-to)1702-1714
Number of pages13
JournalInformation sciences
Volume180
Issue number9
DOIs
Publication statusPublished - 2010 May 1

All Science Journal Classification (ASJC) codes

  • Software
  • Control and Systems Engineering
  • Theoretical Computer Science
  • Computer Science Applications
  • Information Systems and Management
  • Artificial Intelligence

Fingerprint Dive into the research topics of 'Simple password-based three-party authenticated key exchange without server public keys'. Together they form a unique fingerprint.

  • Cite this