Publication: A Key for John Doe: Modeling and Designing Anonymous Password-Authenticated Key Exchange Protocols
dc.affiliation.dpto | UC3M. Departamento de Matemáticas | es |
dc.contributor.author | González Vasco, María Isabel | |
dc.contributor.author | Pérez Del Pozo, Angel | |
dc.contributor.author | Soriente, Claudio | |
dc.contributor.funder | Ministerio de Economía y Competitividad (España) | es |
dc.date.accessioned | 2023-12-12T13:32:29Z | |
dc.date.available | 2023-12-12T13:32:29Z | |
dc.date.issued | 2021-05-01 | |
dc.description.abstract | Anonymous Password-Authenticated Key Exchange (APAKE) can be seen as the hybrid offspring of standard key exchange and anonymous password authentication protocols. APAKE allows a client holding a low-entropy password to establish a session key with a server, provided that the client's password is in the server's set. Moreover, no information about the password input by the client or the set of valid passwords held by the server should leak to the other party-beyond whether the client's password lies or not in the server's password database. To the best of our knowledge, all APAKE proposals to date either assume client storage or force the client to remember the index assigned to its password in the server's database. Furthermore, earlier works either provide only informal definitions or fail in some sense to properly model the primitive. In this paper, we provide a formal security model for APAKE, capturing security and anonymity provisions for both clients and servers. In addition, we present two APAKE protocols that only require clients to remember a password and that attain our sought key secrecy and anonymity guarantees. Our first protocol leverages oblivious pseudo-random functions, while the second one builds upon a special type of identity-based encryption scheme. | en |
dc.description.sponsorship | This work is partially supported by the NATO Science for Peace and Security program (grant G5448), as well as by the MINECO grant MTM2016-77213-R. | en |
dc.format.extent | 18 | es |
dc.identifier.bibliographicCitation | González Vasco, M. I., Pérez del Pozo, A. L. and Soriente, C. (2021). A Key for John Doe: Modeling and Designing Anonymous Password-Authenticated Key Exchange Protocols. IEEE Transactions on Dependable and Secure Computing, 18 (3), pp. 1336-1353 | en |
dc.identifier.doi | https://doi.org/10.1109/TDSC.2019.2919013 | |
dc.identifier.issn | 1545-5971 | |
dc.identifier.publicationfirstpage | 1336 | es |
dc.identifier.publicationissue | 3 | es |
dc.identifier.publicationlastpage | 1356 | es |
dc.identifier.publicationtitle | IEEE Transactions on Dependable and Secure Computing | en |
dc.identifier.publicationvolume | 18 | es |
dc.identifier.uri | https://hdl.handle.net/10016/39070 | |
dc.identifier.uxxi | AR/0000032350 | |
dc.language.iso | eng | es |
dc.publisher | IEEE | en |
dc.relation.projectID | Gobierno de España. MTM2016-77213-R | es |
dc.rights | © 2021, IEEE | en |
dc.rights.accessRights | open access | en |
dc.subject.eciencia | Informática | es |
dc.subject.eciencia | Matemáticas | es |
dc.subject.other | Anonymity | en |
dc.subject.other | Password authentication | en |
dc.subject.other | Group key exchange | en |
dc.title | A Key for John Doe: Modeling and Designing Anonymous Password-Authenticated Key Exchange Protocols | en |
dc.type | research article | * |
dc.type.hasVersion | AM | * |
dspace.entity.type | Publication |
Files
Original bundle
1 - 1 of 1