HAL will be down for maintenance from Friday, June 10 at 4pm through Monday, June 13 at 9am. More information
Skip to Main content Skip to Navigation
Conference papers

Efficient Two-Party Password-Based Key Exchange Protocols in the UC Framework

Abstract : Most of the existing password-based authenticated key exchange protocols have proofs either in the indistinguishability-based security model of Bellare, Pointcheval, and Rogaway (BPR) or in the simulation-based of Boyko, MacKenzie, and Patel (BMP). Though these models provide a security level that is sufficient for most applications, they fail to consider some realistic scenarios such as participants running the protocol with different but possibly related passwords. To overcome these deficiencies, Canetti et al. proposed a new security model in the universal composability (UC) framework which makes no assumption on the distribution on passwords used by the protocol participants. They also proposed a new protocol, but, unfortunately, the latter is not as efficient as some of the existing protocols in BPR and BMP models. In this paper, we investigate whether some of the existing protocols that were proven secure in BPR and BMP models can also be proven secure in the new UC model and we answer this question in the affirmative. More precisely, we show that the protocol by Bresson, Chevassut, and Pointcheval (BCP) in CCS 2003 is also secure in the new UC model. The proof of security relies in the random-oracle and ideal-cipher models and works even in the presence of adaptive adversaries, capable of corrupting players at any time and learning their internal states.
Document type :
Conference papers
Complete list of metadata

Cited literature [18 references]  Display  Hide  Download

Contributor : David Pointcheval Connect in order to contact the contributor
Submitted on : Tuesday, September 22, 2009 - 4:22:17 PM
Last modification on : Thursday, March 17, 2022 - 10:08:35 AM
Long-term archiving on: : Tuesday, October 16, 2012 - 11:11:34 AM


Files produced by the author(s)


  • HAL Id : inria-00419157, version 1



Michel Abdalla, Dario Catalano, Céline Chevalier, David Pointcheval. Efficient Two-Party Password-Based Key Exchange Protocols in the UC Framework. The Cryptographers' Track at RSA Conference '08 (CT-RSA '08), 2008, San Francisco, Californie, Germany. pp.335--351. ⟨inria-00419157⟩



Record views


Files downloads