International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

A Security Weakness in a Generic Construction of a Group Key Exchange Protocol

Authors:
Junghyun Nam
Download:
URL: http://eprint.iacr.org/2010/225
Search ePrint
Search Google
Abstract: Protocols for group key exchange are cryptographic algorithms that allow a group of parties communicating over a public network to come up with a common secret key. One of the interesting results of research on group key exchange is the protocol compiler presented by Abdalla et al.~in TCC '07. Abdalla et al.'s compiler shows how one can transform any authenticated 2-party key exchange protocol into an authenticated group key exchange protocol with 2 more rounds of communication. This compiler certainly is elegant in its genericness, symmetricity, simplicity and efficiency. However, the situation completely changes when it comes to security. In this work, we reveal a major security weakness in Abdalla et al.'s compiler and show how to address it. The security weakness uncovered here implies that Abdalla et al.'s proof of security for their compiler is invalid.
BibTeX
@misc{eprint-2010-23126,
  title={A Security Weakness in a Generic Construction of a Group Key Exchange Protocol},
  booktitle={IACR Eprint archive},
  keywords={cryptographic protocols / Cryptography, Group key exchange, Protocol compiler, Implicit key authentication, Key confirmation.},
  url={http://eprint.iacr.org/2010/225},
  note={ jhnam@kku.ac.kr 14721 received 20 Apr 2010, last revised 21 Apr 2010},
  author={Junghyun Nam},
  year=2010
}