Journal
MATHEMATICAL AND COMPUTER MODELLING
Volume 57, Issue 5-6, Pages 1175-1183Publisher
PERGAMON-ELSEVIER SCIENCE LTD
DOI: 10.1016/j.mcm.2012.10.019
Keywords
Password-based; Authenticated key exchange; Three-party; Dictionary attack
Categories
Funding
- 863 Program of China [2011AA110501]
Ask authors/readers for more resources
A password based authenticated key exchange protocol is of practical usefulness in the protection of sharing of urban rail train sensor monitoring data. However, many password-based protocols in the literature were not secure. Recently, Huang presented a simple and efficient three-party password-based authenticated key exchange protocol. However, Yoon et al. found it had some security weaknesses. In this paper, we further show it has another critical security weakness, which opens door to a partition attack (offline dictionary attack). Thereafter we propose an enhanced protocol that can defeat the attacks described (including Yoon et al.'s attacks) and yet is reasonably efficient. Furthermore, our protocol can resist against the stolen-verifier attacks and achieve the provable security. (C) 2012 Elsevier Ltd. All rights reserved.
Authors
I am an author on this paper
Click your name to claim this paper and add it to your profile.
Reviews
Recommended
No Data Available