International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

Cryptanalysis of a client-to-client password-authenticated key agreement protocol

Authors:
Fengjiao Wang
Yuqing Zhang
Download:
URL: http://eprint.iacr.org/2008/248
Search ePrint
Search Google
Abstract: Recently, Byun et al. proposed an efficient client-to-client password-authenticated key agreement protocol (EC2C-PAKA), which was provably secure in a formally defined security model. This letter shows that EC2C-PAKA protocol is vulnerable to password compromise impersonate attack and man-in-the-middle attack if the key between servers is compromised.
BibTeX
@misc{eprint-2008-17925,
  title={Cryptanalysis of a client-to-client password-authenticated key agreement protocol},
  booktitle={IACR Eprint archive},
  keywords={cryptographic protocols /},
  url={http://eprint.iacr.org/2008/248},
  note={ wangfj@nipc.org.cn 14032 received 1 Jun 2008},
  author={Fengjiao Wang and Yuqing Zhang},
  year=2008
}