International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

J-PAKE: Authenticated Key Exchange Without PKI

Authors:
Feng Hao
Peter Ryan
Download:
URL: http://eprint.iacr.org/2010/190
Search ePrint
Search Google
Abstract: Password Authenticated Key Exchange (PAKE) is one of the important topics in cryptography. It aims to address a practical security problem: how to establish secure communication between two parties solely based on a shared password without requiring a Public Key Infrastructure (PKI). After more than a decade of extensive research in this field, there have been several PAKE protocols available. The EKE and SPEKE schemes are perhaps the two most notable examples. Both techniques are however patented. In this paper, we review these techniques in detail and summarize various theoretical and practical weaknesses. In addition, we present a new PAKE solution called J-PAKE. Our strategy is to depend on well-established primitives such as the Zero-Knowledge Proof (ZKP). So far, almost all of the past solutions have avoided using ZKP for the concern on efficiency. We demonstrate how to effectively integrate the ZKP into the protocol design and meanwhile achieve good efficiency. Our protocol has comparable computational efficiency to the EKE and SPEKE schemes with clear advantages on security.
BibTeX
@misc{eprint-2010-23091,
  title={J-PAKE: Authenticated Key Exchange Without PKI},
  booktitle={IACR Eprint archive},
  keywords={cryptographic protocols / Password-Authenticated Key Exchange, EKE, SPEKE, key agreement},
  url={http://eprint.iacr.org/2010/190},
  note={A preliminary workshop version of the paper was presented at the 16th Workshop on Security Protocols, Cambridge, April 2008. This is a journal version of the paper, in submission to a journal. There is no technical change to the J-PAKE protocol. haofeng66},
  author={Feng Hao and Peter Ryan},
  year=2010
}