Authenticated key exchange with entities from different settings and varied groups

CORC > 软件研究所 > 软件所图书馆 > 期刊论文

	Authenticated key exchange with entities from different settings and varied groups
	Guo, YF ; Zhang, ZF
刊名	SECURITY AND COMMUNICATION NETWORKS
	2016
卷号	9 期号:12 页码:1843-1863
关键词	Authenticated Key Exchange Security Model Certificate-based protocols Identity-based protocols
ISSN号	1939-0114
中文摘要	Authenticated key exchange (AKE) is a very important primitive in cryptography. In the last decades, many AKE protocols appeared either in the certificate-based (cert-based) setting or in the identity-based (id-based) setting. In real applications, entities from different settings may also have the requirement to communicate with each other. Several papers have concentrated on supporting either multiple certification authorities or multiple key generation centers, but very few have considered the interoperability between the two settings. Furthermore, existing approaches are still inadequate in supporting parameters from different algebraic groups. In this paper, we consider AKE protocols integrating cert-based and id-based settings with varied groups. Based on two extract algorithms for id-based entities, we present two AKE protocols where one entity is cert-based and the other is id-based, and the parameters of both entities come from different groups. An extended AKE security model of Chatterjee et al. and Ustaoglu [1, 2] is proposed to support multiple certification authorities and multiple key generation centers in which the proposed protocols are proved to be secure. Other variant protocols are also presented. Then, extensions to support forward secrecy and resistance to leakage of both ephemeral keys are provided. Finally, we present a more efficient integrating protocol than existing constructions for users who use the same group. Copyright (c) 2013 John Wiley & Sons, Ltd.
英文摘要	Authenticated key exchange (AKE) is a very important primitive in cryptography. In the last decades, many AKE protocols appeared either in the certificate-based (cert-based) setting or in the identity-based (id-based) setting. In real applications, entities from different settings may also have the requirement to communicate with each other. Several papers have concentrated on supporting either multiple certification authorities or multiple key generation centers, but very few have considered the interoperability between the two settings. Furthermore, existing approaches are still inadequate in supporting parameters from different algebraic groups. In this paper, we consider AKE protocols integrating cert-based and id-based settings with varied groups. Based on two extract algorithms for id-based entities, we present two AKE protocols where one entity is cert-based and the other is id-based, and the parameters of both entities come from different groups. An extended AKE security model of Chatterjee et al. and Ustaoglu [1, 2] is proposed to support multiple certification authorities and multiple key generation centers in which the proposed protocols are proved to be secure. Other variant protocols are also presented. Then, extensions to support forward secrecy and resistance to leakage of both ephemeral keys are provided. Finally, we present a more efficient integrating protocol than existing constructions for users who use the same group. Copyright (c) 2013 John Wiley & Sons, Ltd.
收录类别	SCI
语种	英语
公开日期	2016-12-09
内容类型	期刊论文
源URL	[http://ir.iscas.ac.cn/handle/311060/17309]
专题	软件研究所_软件所图书馆_期刊论文
推荐引用方式 GB/T 7714	Guo, YF,Zhang, ZF. Authenticated key exchange with entities from different settings and varied groups[J]. SECURITY AND COMMUNICATION NETWORKS,2016,9(12):1843-1863.
APA	Guo, YF,&Zhang, ZF.(2016).Authenticated key exchange with entities from different settings and varied groups.SECURITY AND COMMUNICATION NETWORKS,9(12),1843-1863.
MLA	Guo, YF,et al."Authenticated key exchange with entities from different settings and varied groups".SECURITY AND COMMUNICATION NETWORKS 9.12(2016):1843-1863.