CryptoDB
Brian A. LaMacchia
Affiliation: Microsoft
Publications
Year
Venue
Title
2006
EPRINT
Stronger Security of Authenticated Key Exchange
Abstract
In this paper we study security definitions for authenticated key
exchange (AKE) protocols. We observe that there are several
families of attacks on AKE protocols that lie outside the boundary
of the current class of security definitions. In an attempt to
bring these attacks within the scope of analysis we extend the AKE
security definition to provide greater powers to the adversary. We
provide a general framework for defining AKE security, which we call
strong AKE security, such that existing security definitions
occur as instances of the framework. We then introduce NAXOS, a new
two-pass AKE protocol, and prove that it is secure in this stronger
definition.
In addition, we formulate a notion of ephemeral secret key which
captures all ephemeral information used in session establishment. We
demonstrate the importance of this formulation by showing that a
secure AKE protocol SIG-DH can become vulnerable when instantiated
with signature schemes which are insecure against revelation of the
secret random bits used in the signature generation.
Program Committees
Coauthors
- Matthijs J. Coster (1)
- Kristin E. Lauter (1)
- Anton Mityagin (1)
- Andrew M. Odlyzko (3)