Enhancements of authenticated multiple key exchange protocol based on bilinear pairings

Duc Liem Vo; Hyunrok Lee; Chan Yeob Yeun; Kwangjo Kim

doi:10.1016/j.compeleceng.2009.08.001

Enhancements of authenticated multiple key exchange protocol based on bilinear pairings

Duc Liem Vo, Hyunrok Lee, Chan Yeob Yeun, Kwangjo Kim

Electrical Engineering

Department of Industrial and Systems Engineering Korea Advanced Institute of Science and Technology

Research output: Contribution to journal › Article › peer-review

55 Scopus citations

Abstract

Lee et al. [4] proposed two new authenticated multiple key exchange protocols based on Elliptic Curve Cryptography (ECC) and bilinear pairings. In this paper, we show an impersonation attack on their pairing-based authenticated key exchange protocol. We demonstrate that any attacker can impersonate an entity to share multiple session keys with another entity of his/her choice by using only the public key of the victim. Moreover, their protocol fails to provide perfect forward secrecy, despite of their claim to the contrary. Thus, we propose a simple modification to the original protocol which avoids our attack.

Original language	British English
Pages (from-to)	155-159
Number of pages	5
Journal	Computers and Electrical Engineering
Volume	36
Issue number	1
DOIs	https://doi.org/10.1016/j.compeleceng.2009.08.001
State	Published - Jan 2010

Keywords

Authenticated key exchange
Bilinear pairing
Cryptanalysis
Cryptography

Access to Document

10.1016/j.compeleceng.2009.08.001

Cite this

@article{0300250775434454be4818e0574cdcc0,

title = "Enhancements of authenticated multiple key exchange protocol based on bilinear pairings",

abstract = "Lee et al. [4] proposed two new authenticated multiple key exchange protocols based on Elliptic Curve Cryptography (ECC) and bilinear pairings. In this paper, we show an impersonation attack on their pairing-based authenticated key exchange protocol. We demonstrate that any attacker can impersonate an entity to share multiple session keys with another entity of his/her choice by using only the public key of the victim. Moreover, their protocol fails to provide perfect forward secrecy, despite of their claim to the contrary. Thus, we propose a simple modification to the original protocol which avoids our attack.",

keywords = "Authenticated key exchange, Bilinear pairing, Cryptanalysis, Cryptography",

author = "Vo, {Duc Liem} and Hyunrok Lee and Yeun, {Chan Yeob} and Kwangjo Kim",

note = "Funding Information: The authors would like to thank the anonymous reviewers for their valuable comments. This work was supported by the IT R&D program of MKE/TTA, 2009-P1-14-08I91, Mobile and next generation RFID technology standards development.",

year = "2010",

month = jan,

doi = "10.1016/j.compeleceng.2009.08.001",

language = "British English",

volume = "36",

pages = "155--159",

journal = "Computers and Electrical Engineering",

issn = "0045-7906",

publisher = "Elsevier Ltd",

number = "1",

}

TY - JOUR

T1 - Enhancements of authenticated multiple key exchange protocol based on bilinear pairings

AU - Vo, Duc Liem

AU - Lee, Hyunrok

AU - Yeun, Chan Yeob

AU - Kim, Kwangjo

N1 - Funding Information: The authors would like to thank the anonymous reviewers for their valuable comments. This work was supported by the IT R&D program of MKE/TTA, 2009-P1-14-08I91, Mobile and next generation RFID technology standards development.

PY - 2010/1

Y1 - 2010/1

N2 - Lee et al. [4] proposed two new authenticated multiple key exchange protocols based on Elliptic Curve Cryptography (ECC) and bilinear pairings. In this paper, we show an impersonation attack on their pairing-based authenticated key exchange protocol. We demonstrate that any attacker can impersonate an entity to share multiple session keys with another entity of his/her choice by using only the public key of the victim. Moreover, their protocol fails to provide perfect forward secrecy, despite of their claim to the contrary. Thus, we propose a simple modification to the original protocol which avoids our attack.

AB - Lee et al. [4] proposed two new authenticated multiple key exchange protocols based on Elliptic Curve Cryptography (ECC) and bilinear pairings. In this paper, we show an impersonation attack on their pairing-based authenticated key exchange protocol. We demonstrate that any attacker can impersonate an entity to share multiple session keys with another entity of his/her choice by using only the public key of the victim. Moreover, their protocol fails to provide perfect forward secrecy, despite of their claim to the contrary. Thus, we propose a simple modification to the original protocol which avoids our attack.

KW - Authenticated key exchange

KW - Bilinear pairing

KW - Cryptanalysis

KW - Cryptography

UR - http://www.scopus.com/inward/record.url?scp=72449151210&partnerID=8YFLogxK

U2 - 10.1016/j.compeleceng.2009.08.001

DO - 10.1016/j.compeleceng.2009.08.001

M3 - Article

AN - SCOPUS:72449151210

SN - 0045-7906

VL - 36

SP - 155

EP - 159

JO - Computers and Electrical Engineering

JF - Computers and Electrical Engineering

IS - 1

ER -

Enhancements of authenticated multiple key exchange protocol based on bilinear pairings

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this