Cryptanalysis of the n-party encrypted Diffie-Hellman key exchange using different passwords
We consider the security of the n-party EKE-U and EKEM protocols proposed by Byun and Lee at ACNS '05. We show that EKE-U is vulnerable to an impersonation attack, offline dictionary attack and undetectable online dictionary attack. Surprisingly, even the strengthened variant recently proposed...
| Main Authors: | , |
|---|---|
| Format: | Book Section |
| Language: | English |
| Published: |
Springer Berlin Heidelberg
2006
|
| Subjects: | |
| Online Access: | http://shdl.mmu.edu.my/2022/ http://shdl.mmu.edu.my/2022/1/Cryptanalysis%20of%20the%20n-party%20encrypted%20Diffie-Hellman%20key%20exchange%20using%20different%20passwords.pdf |
| _version_ | 1848789942205939712 |
|---|---|
| author | Phan, Raphael Chung Wei Goi, Bok Min |
| author_facet | Phan, Raphael Chung Wei Goi, Bok Min |
| author_sort | Phan, Raphael Chung Wei |
| building | MMU Institutional Repository |
| collection | Online Access |
| description | We consider the security of the n-party EKE-U and EKEM protocols proposed by Byun and Lee at ACNS '05. We show that EKE-U is vulnerable to an impersonation attack, offline dictionary attack and undetectable online dictionary attack. Surprisingly, even the strengthened variant recently proposed by the same designers to counter an insider offline dictionary attack by Tang and Chen, is equally vulnerable. We also show that both the original and strengthened EKE-M variants do not provide key privacy, a criterion desired by truly contributory key exchange schemes and recently formalized by Abdalla et al. We discuss ways to protect EKE-U against our attacks and argue that the strengthened EKE-U scheme shows the most potential as a provably secure n-party PAKE. |
| first_indexed | 2025-11-14T18:04:44Z |
| format | Book Section |
| id | mmu-2022 |
| institution | Multimedia University |
| institution_category | Local University |
| language | English |
| last_indexed | 2025-11-14T18:04:44Z |
| publishDate | 2006 |
| publisher | Springer Berlin Heidelberg |
| recordtype | eprints |
| repository_type | Digital Repository |
| spelling | mmu-20222015-03-03T08:13:27Z http://shdl.mmu.edu.my/2022/ Cryptanalysis of the n-party encrypted Diffie-Hellman key exchange using different passwords Phan, Raphael Chung Wei Goi, Bok Min QA75.5-76.95 Electronic computers. Computer science We consider the security of the n-party EKE-U and EKEM protocols proposed by Byun and Lee at ACNS '05. We show that EKE-U is vulnerable to an impersonation attack, offline dictionary attack and undetectable online dictionary attack. Surprisingly, even the strengthened variant recently proposed by the same designers to counter an insider offline dictionary attack by Tang and Chen, is equally vulnerable. We also show that both the original and strengthened EKE-M variants do not provide key privacy, a criterion desired by truly contributory key exchange schemes and recently formalized by Abdalla et al. We discuss ways to protect EKE-U against our attacks and argue that the strengthened EKE-U scheme shows the most potential as a provably secure n-party PAKE. Springer Berlin Heidelberg 2006 Book Section NonPeerReviewed text en http://shdl.mmu.edu.my/2022/1/Cryptanalysis%20of%20the%20n-party%20encrypted%20Diffie-Hellman%20key%20exchange%20using%20different%20passwords.pdf Phan, Raphael Chung Wei and Goi, Bok Min (2006) Cryptanalysis of the n-party encrypted Diffie-Hellman key exchange using different passwords. In: Applied Cryptography and Network Security. Lecture Notes in Computer Science (3989). Springer Berlin Heidelberg, pp. 226-238. ISBN 978-3-540-34704-0 http://link.springer.com/chapter/10.1007%2F11767480_15 10.1007/11767480_15 10.1007/11767480_15 10.1007/11767480_15 |
| spellingShingle | QA75.5-76.95 Electronic computers. Computer science Phan, Raphael Chung Wei Goi, Bok Min Cryptanalysis of the n-party encrypted Diffie-Hellman key exchange using different passwords |
| title | Cryptanalysis of the n-party encrypted Diffie-Hellman key exchange using different passwords |
| title_full | Cryptanalysis of the n-party encrypted Diffie-Hellman key exchange using different passwords |
| title_fullStr | Cryptanalysis of the n-party encrypted Diffie-Hellman key exchange using different passwords |
| title_full_unstemmed | Cryptanalysis of the n-party encrypted Diffie-Hellman key exchange using different passwords |
| title_short | Cryptanalysis of the n-party encrypted Diffie-Hellman key exchange using different passwords |
| title_sort | cryptanalysis of the n-party encrypted diffie-hellman key exchange using different passwords |
| topic | QA75.5-76.95 Electronic computers. Computer science |
| url | http://shdl.mmu.edu.my/2022/ http://shdl.mmu.edu.my/2022/ http://shdl.mmu.edu.my/2022/ http://shdl.mmu.edu.my/2022/1/Cryptanalysis%20of%20the%20n-party%20encrypted%20Diffie-Hellman%20key%20exchange%20using%20different%20passwords.pdf |