n PAKE+: a tree-based group password-authenticated key exchange protocol using different passwords

Although two-party password-authenticated key exchange (PAKE) protocols have been intensively studied in recent years, group PAKE protocols have received little attention. In this paper, we propose a tree-based group PAKE protocol — nPAKE+ protocol under the setting where each party shares an indepe...

Full description

Saved in:
Bibliographic Details
Main Authors: WAN, Zhiguo, DENG, Robert H., Bao, Feng, Preneel, Bart, GU, Ming
Format: text
Language:English
Published: Institutional Knowledge at Singapore Management University 2009
Subjects:
Online Access:https://ink.library.smu.edu.sg/sis_research/755
http://dx.doi.org/10.1007/s11390-009-9207-6
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Singapore Management University
Language: English
id sg-smu-ink.sis_research-1754
record_format dspace
spelling sg-smu-ink.sis_research-17542010-11-26T07:24:03Z n PAKE+: a tree-based group password-authenticated key exchange protocol using different passwords WAN, Zhiguo DENG, Robert H. Bao, Feng Preneel, Bart GU, Ming Although two-party password-authenticated key exchange (PAKE) protocols have been intensively studied in recent years, group PAKE protocols have received little attention. In this paper, we propose a tree-based group PAKE protocol — nPAKE+ protocol under the setting where each party shares an independent password with a trusted server. The nPAKE+ protocol is a novel combination of the hierarchical key tree structure and the password-based Diffie-Hellman exchange, and hence it achieves substantial gain in computation efficiency. In particular, the computation cost for each client in our protocol is only O(log n). Additionally, the hierarchical feature of nPAKE+ enables every subgroup to obtain its own subgroup key in the end. We also prove the security of our protocol under the random oracle model and the ideal cipher model. 2009-01-01T08:00:00Z text https://ink.library.smu.edu.sg/sis_research/755 info:doi/10.1007/s11390-009-9207-6 http://dx.doi.org/10.1007/s11390-009-9207-6 Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University security protocol password-authenticated key exchange group key agreement Information Security
institution Singapore Management University
building SMU Libraries
continent Asia
country Singapore
Singapore
content_provider SMU Libraries
collection InK@SMU
language English
topic security protocol
password-authenticated key exchange
group key agreement
Information Security
spellingShingle security protocol
password-authenticated key exchange
group key agreement
Information Security
WAN, Zhiguo
DENG, Robert H.
Bao, Feng
Preneel, Bart
GU, Ming
n PAKE+: a tree-based group password-authenticated key exchange protocol using different passwords
description Although two-party password-authenticated key exchange (PAKE) protocols have been intensively studied in recent years, group PAKE protocols have received little attention. In this paper, we propose a tree-based group PAKE protocol — nPAKE+ protocol under the setting where each party shares an independent password with a trusted server. The nPAKE+ protocol is a novel combination of the hierarchical key tree structure and the password-based Diffie-Hellman exchange, and hence it achieves substantial gain in computation efficiency. In particular, the computation cost for each client in our protocol is only O(log n). Additionally, the hierarchical feature of nPAKE+ enables every subgroup to obtain its own subgroup key in the end. We also prove the security of our protocol under the random oracle model and the ideal cipher model.
format text
author WAN, Zhiguo
DENG, Robert H.
Bao, Feng
Preneel, Bart
GU, Ming
author_facet WAN, Zhiguo
DENG, Robert H.
Bao, Feng
Preneel, Bart
GU, Ming
author_sort WAN, Zhiguo
title n PAKE+: a tree-based group password-authenticated key exchange protocol using different passwords
title_short n PAKE+: a tree-based group password-authenticated key exchange protocol using different passwords
title_full n PAKE+: a tree-based group password-authenticated key exchange protocol using different passwords
title_fullStr n PAKE+: a tree-based group password-authenticated key exchange protocol using different passwords
title_full_unstemmed n PAKE+: a tree-based group password-authenticated key exchange protocol using different passwords
title_sort n pake+: a tree-based group password-authenticated key exchange protocol using different passwords
publisher Institutional Knowledge at Singapore Management University
publishDate 2009
url https://ink.library.smu.edu.sg/sis_research/755
http://dx.doi.org/10.1007/s11390-009-9207-6
_version_ 1770570701411975168