Efficient Two-Party Password-Based Key Exchange Protocols in the UC Framework

Michel Abdalla 1, 2 Dario Catalano 3 Céline Chevalier 1, 2 David Pointcheval 1, 2
2 CASCADE - Construction and Analysis of Systems for Confidentiality and Authenticity of Data and Entities
DI-ENS - Département d'informatique de l'École normale supérieure, Inria Paris-Rocquencourt, CNRS - Centre National de la Recherche Scientifique : UMR 8548
Abstract : Most of the existing password-based authenticated key exchange protocols have proofs either in the indistinguishability-based security model of Bellare, Pointcheval, and Rogaway (BPR) or in the simulation-based of Boyko, MacKenzie, and Patel (BMP). Though these models provide a security level that is sufficient for most applications, they fail to consider some realistic scenarios such as participants running the protocol with different but possibly related passwords. To overcome these deficiencies, Canetti et al. proposed a new security model in the universal composability (UC) framework which makes no assumption on the distribution on passwords used by the protocol participants. They also proposed a new protocol, but, unfortunately, the latter is not as efficient as some of the existing protocols in BPR and BMP models. In this paper, we investigate whether some of the existing protocols that were proven secure in BPR and BMP models can also be proven secure in the new UC model and we answer this question in the affirmative. More precisely, we show that the protocol by Bresson, Chevassut, and Pointcheval (BCP) in CCS 2003 is also secure in the new UC model. The proof of security relies in the random-oracle and ideal-cipher models and works even in the presence of adaptive adversaries, capable of corrupting players at any time and learning their internal states.
Type de document :
Communication dans un congrès
T. Malkin. The Cryptographers' Track at RSA Conference '08 (CT-RSA '08), 2008, San Francisco, Californie, Germany. Springer-Verlag, Berlin, 4964, pp.335--351, 2008, Lecture notes in computer science
Liste complète des métadonnées

Littérature citée [18 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/inria-00419157
Contributeur : David Pointcheval <>
Soumis le : mardi 22 septembre 2009 - 16:22:17
Dernière modification le : jeudi 11 janvier 2018 - 06:22:10
Document(s) archivé(s) le : mardi 16 octobre 2012 - 11:11:34

Fichier

2008_rsa.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : inria-00419157, version 1

Collections

Citation

Michel Abdalla, Dario Catalano, Céline Chevalier, David Pointcheval. Efficient Two-Party Password-Based Key Exchange Protocols in the UC Framework. T. Malkin. The Cryptographers' Track at RSA Conference '08 (CT-RSA '08), 2008, San Francisco, Californie, Germany. Springer-Verlag, Berlin, 4964, pp.335--351, 2008, Lecture notes in computer science. 〈inria-00419157〉

Partager

Métriques

Consultations de la notice

293

Téléchargements de fichiers

192