Encrypted key exchange: password-based protocols secure against dictionary attacks
Steven M. Bellovin,Michael Merritt +1 more
- pp 72-84
Reads0
Chats0
TLDR
A combination of asymmetric (public-key) and symmetric (secret- key) cryptography that allow two parties sharing a common password to exchange confidential and authenticated information over an insecure network is introduced.Abstract:
Classic cryptographic protocols based on user-chosen keys allow an attacker to mount password-guessing attacks. A combination of asymmetric (public-key) and symmetric (secret-key) cryptography that allow two parties sharing a common password to exchange confidential and authenticated information over an insecure network is introduced. In particular, a protocol relying on the counter-intuitive motion of using a secret key to encrypt a public key is presented. Such protocols are secure against active attacks, and have the property that the password is protected against offline dictionary attacks. >read more
Citations
More filters
Cryptographic protocol design
TL;DR: This work investigates the security of interactive computations and discusses how to formalise various security goals, such as inputprivacy, output-consistency and complete security, and how to choose a security goal that is appropriate for a specific setting.
Journal ArticleDOI
Breaking an improved password authenticated key exchange protocol for imbalanced wireless networks
TL;DR: It is shown that the improved protocol of Yeh et al. is insecure, and an adversary can recover the password, off-line, by executing a single run of theimproved protocol.
Journal Article
Perfect Forward Security of SPAKE2
Michel Abdalla,Manuel Barbosa +1 more
TL;DR: It is shown that SPAKE2 achieves perfect forward security in the random-oracle model under the Gap Diffie-Hellman assumption, which guarantees the security of the derived keys even for sessions that were created with the active involvement of the attacker.
Patent
Authentication of external devices to implantable medical devices using biometric measurements
TL;DR: In this paper, a medical device is configured to receive a request for access from the monitoring device, to measure a physiological value of the living organism, to perform a pairing protocol with the monitoring devices, the pairing protocol comprising a secure channel set-up phase followed by an authentication phase.
Book ChapterDOI
Robust Password-Protected Secret Sharing
TL;DR: Wang et al. as discussed by the authors proposed a robust gap threshold secret sharing (RGTSSS) scheme, which can be constructed from two oblivious pseudo-random functions (OPRFs) and is proven in the random-oracle model.
References
More filters
Journal ArticleDOI
New Directions in Cryptography
TL;DR: This paper suggests ways to solve currently open problems in cryptography, and discusses how the theories of communication and computation are beginning to provide the tools to solve cryptographic problems of long standing.
Journal ArticleDOI
A method for obtaining digital signatures and public-key cryptosystems
TL;DR: An encryption method is presented with the novel property that publicly revealing an encryption key does not thereby reveal the corresponding decryption key.
Journal ArticleDOI
A public key cryptosystem and a signature scheme based on discrete logarithms
TL;DR: A new signature scheme is proposed, together with an implementation of the Diffie-Hellman key distribution scheme that achieves a public key cryptosystem that relies on the difficulty of computing discrete logarithms over finite fields.
Book ChapterDOI
A Public Key Cryptosystem and a Signature Scheme Based on Discrete Logarithms
TL;DR: In this article, a new signature scheme is proposed together with an implementation of the Diffie-Hellman key distribution scheme that achieves a public key cryptosystem and the security of both systems relies on the difficulty of computing discrete logarithms over finite fields.
Book
Cryptography and data security
TL;DR: The goal of this book is to introduce the mathematical principles of data security and to show how these principles apply to operating systems, database systems, and computer networks.