CryptoDB
Cryptanalysis of a client-to-client password-authenticated key agreement protocol
Authors: | |
---|---|
Download: | |
Abstract: | Recently, Byun et al. proposed an efficient client-to-client password-authenticated key agreement protocol (EC2C-PAKA), which was provably secure in a formally defined security model. This letter shows that EC2C-PAKA protocol is vulnerable to password compromise impersonate attack and man-in-the-middle attack if the key between servers is compromised. |
BibTeX
@misc{eprint-2008-17925, title={Cryptanalysis of a client-to-client password-authenticated key agreement protocol}, booktitle={IACR Eprint archive}, keywords={cryptographic protocols /}, url={http://eprint.iacr.org/2008/248}, note={ wangfj@nipc.org.cn 14032 received 1 Jun 2008}, author={Fengjiao Wang and Yuqing Zhang}, year=2008 }