An improved cross-realm client-to-client password-authenticated key exchange protocol

doi:-

Journal of Northeastern University ›› 2009, Vol. 30 ›› Issue (1): 42-45.DOI: -

• OriginalPaper • Previous Articles Next Articles

An improved cross-realm client-to-client password-authenticated key exchange protocol

Liu, Guang-Wei (1); Zhou, En-Guang (1); Yan, Hong (1); Zhou, Fu-Cai (1)

(1) School of Information Science and Engineering, Northeastern University, Shenyang 110004, China

Received:2013-06-22 Revised:2013-06-22 Online:2009-01-15 Published:2013-06-22
Contact: Liu, G.-W.
About author:-
Supported by:
-

Abstract

Abstract: The client-to-client password-authenticated key exchange (C2C-PAKE) protocol enables two clients from different realms to agree on a shared common session key. Describing the C2C-PAKE protocol of Byun2007, its security is analyzed and it is found that the protocol is easy to suffer the attacks due to password-compromised impersonation and undetected on-line dictionary. An improved C2C-PAKE protocol is therefore proposed to introduce the public key mechanism into system security to resist those attacks effectively, especially only six operational steps are needed in relevant communication. As shown in security analysis, the protocol proposed is available to meet the security requirements.

CLC Number:

Liu, Guang-Wei (1); Zhou, En-Guang (1); Yan, Hong (1); Zhou, Fu-Cai (1) . An improved cross-realm client-to-client password-authenticated key exchange protocol[J]. Journal of Northeastern University, 2009, 30(1): 42-45.

References

Related Articles 15

[1]	-. - [J]. Journal of Northeastern University(Natural Science), 1956, 0(1): 1-2.
[2]	-. - [J]. Journal of Northeastern University(Natural Science), 1956, 0(1): 3-10.
[3]	-. - [J]. Journal of Northeastern University(Natural Science), 1956, 0(1): 11-20.
[4]	-. - [J]. Journal of Northeastern University(Natural Science), 1956, 0(1): 21-26.
[5]	-. - [J]. Journal of Northeastern University(Natural Science), 1956, 0(1): 27-51.
[6]	-. - [J]. Journal of Northeastern University(Natural Science), 1956, 0(1): 52-80+363.
[7]	-. - [J]. Journal of Northeastern University(Natural Science), 1956, 0(1): 81-114.
[8]	-. - [J]. Journal of Northeastern University(Natural Science), 1956, 0(1): 115-122.
[9]	-. - [J]. Journal of Northeastern University(Natural Science), 1956, 0(1): 123-142.
[10]	-. - [J]. Journal of Northeastern University(Natural Science), 1956, 0(1): 143-153.
[11]	-. - [J]. Journal of Northeastern University(Natural Science), 1956, 0(1): 154-159.
[12]	-. - [J]. Journal of Northeastern University(Natural Science), 1956, 0(1): 160-168.
[13]	-. - [J]. Journal of Northeastern University(Natural Science), 1956, 0(1): 169-191.
[14]	-. - [J]. Journal of Northeastern University(Natural Science), 1956, 0(1): 192-201.
[15]	-. - [J]. Journal of Northeastern University(Natural Science), 1956, 0(1): 202-215.

An improved cross-realm client-to-client password-authenticated key exchange protocol

RichHTML

PDF (PC)

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments