Simple Three-Party Password Authenticated Key Exchange Protocol

Journal of shanghai Jiaotong University (Science)››2011,Vol. 16››Issue (5): 600-603.doi:10.1007/s12204-011-1195-3

• Articles •Previous Articles Next Articles

Simple Three-Party Password Authenticated Key Exchange Protocol

LO Nai-wei (罗乃维), YEH Kuo-hui (叶国晖)

(1. Department of Information Management, National Taiwan University of Science
and Technology, Taipei 10607;
2. Department of Information Management, Chinese Culture University, Taipei 11114)
(1. Department of Information Management, National Taiwan University of Science
and Technology, Taipei 10607;
2. Department of Information Management, Chinese Culture University, Taipei 11114)

Received:2011-05-10Online:2011-10-29Published:2011-10-20
Contact:LO Nai-wei (罗乃维), E-mail:nwlo@cs.ntust.edu.tw
Supported by:

the National Science Council (Nos. NSC99-2218-E-011-014 and NSC 100-2219-E-011-002)

Abstract

Abstract:Abstract: Three-party password authenticated key exchange (3PAKE)
protocol plays a significant role in the history of secure communication
area in which two clients agree a robust session key in an authentic manner
based on passwords. In recent years, researchers focused on developing
simple 3PAKE (S-3PAKE) protocol to gain system efficiency while preserving
security robustness for the system. In this study, we first demonstrate how
an undetectable on-line dictionary attack can be successfully applied over
three existing S-3PAKE schemes. An error correction code (ECC) based S-3PAKE
protocol is then introduced to eliminate the identified authentication
weakness.

Key words:

摘要：Abstract: Three-party password authenticated key exchange (3PAKE)
protocol plays a significant role in the history of secure communication
area in which two clients agree a robust session key in an authentic manner
based on passwords. In recent years, researchers focused on developing
simple 3PAKE (S-3PAKE) protocol to gain system efficiency while preserving
security robustness for the system. In this study, we first demonstrate how
an undetectable on-line dictionary attack can be successfully applied over
three existing S-3PAKE schemes. An error correction code (ECC) based S-3PAKE
protocol is then introduced to eliminate the identified authentication
weakness.

关键词:

CLC Number:

TP 309.2

LO Nai-wei (罗乃维), YEH Kuo-hui (叶国晖). Simple Three-Party Password Authenticated Key Exchange Protocol[J]. Journal of shanghai Jiaotong University (Science), 2011, 16(5): 600-603.

[1]	LI Hongxin, ZHONG Zuhao, LU Yi, WEN Yunfeng.Optimization of Frequency Control Parameters of Wind Farms Considering Inertia Security Requirement[J]. Journal of Shanghai Jiao Tong University, 2025, 59(3): 323-332.
[2]	TANG Cheng, LIANG Yilin, LI Wenjie, CHEN Guoling.Research on Security of Wideband Communication Satellite Situational Awareness Network[J]. Air & Space Defense, 2025, 8(2): 136-141.
[3]	CHEN Yi, WANG Han, ZENG Dan, YAN Zheng, XUE Bike, ZHAO Le, XIONG Xuejun, FENG Yuyao.A Fast Calculation Method forN-1 Security-Constrained Economic Dispatch via Low-Rank Approximation Surrogate Model[J]. Journal of Shanghai Jiao Tong University, 2024, 58(10): 1524-1533.
[4]	YE Lun, OUYANG Xu, YAO Jiangang, YANG Shengjie, YIN Jungang.Reliability Index Calculation and Reserve Capacity Optimization Considering Multiple Uncertainties[J]. Journal of Shanghai Jiao Tong University, 2024, 58(1): 30-39.
[5]	ZHANG Qingguo, LIU Chunyue, LUO Song, WANG Shuili, LIU Qing.Current Status and Prospects of External Security Technology for Offshore Platforms[J]. Ocean Engineering Equipment and Technology, 2023, 10(4): 92-106.
[6]	WANG Zhaoxi, SHENG Peng, LI Yunyun, WU Xinkai, HUANG Yuejin.Multiaxial Vibration Security and Validity Verification of Connecting Pieces in Typical Section[J]. Air & Space Defense, 2023, 6(1): 85-95.
[7]	WU Nan, CHENG Zhetao, DU Liang, SHEN Yingping.Network Security Inference Method Based on Dempster-Shafer Theory[J]. Journal of Shanghai Jiao Tong University, 2021, 55(S2): 77-81.
[8]	ZHOU Yi, QIN Kangping, SUN Jinwen, FAN Dongqi, ZHENG Yiming.Real-Time Risk Evaluation Method of Power System Equipment andN-mFault Contingency Plan Generation Under Typhoon Meteorological Environment[J]. Journal of Shanghai Jiao Tong University, 2021, 55(S2): 22-30.
[9]	ZHANG Liang, QU Gang, LI Huixing, JIN Haochun.Research and Application of Key Technologies of Network Security Situation Awareness for Smart Grid Power Control Systems[J]. Journal of Shanghai Jiao Tong University, 2021, 55(S2): 103-109.
[10]	ZHANG Taolue∗ (张韬略), TU Huizhao (涂辉招), QIU Wei (邱炜).Developing High-Precision Maps for Automated Driving in China: Legal Obstacles and the Way to Overcome Them[J]. J Shanghai Jiaotong Univ Sci, 2021, 26(5): 658-669.
[11]	CHEN Ying, WEI Guoning, TANG Shengyong, KANG Zhiyu.Global Space Security Situation Analysis and Development Proposal[J]. Air & Space Defense, 2021, 4(3): 99-104.
[12]	WANG Mingzheng, WANG Yijie, WANG Tianyu, HOU Linzao, LI Mian .New Approach for Information Security Evaluation and Management of IT Systems in Educational Institutions[J]. J Shanghai Jiaotong Univ Sci, 2020, 25(6): 689-699.
[13]	YANG Guangyu, QIU Hongbing.Robust Optimization for Energy Efficiency for Secrecy MIMO SWIPT Systems[J]. Journal of Shanghai Jiao Tong University, 2020, 54(4): 369-375.
[14]	GUO Fei (郭非), CAO Zhenfu (曹珍富), LIU Zhusen (刘竹森), CAO Nanyuan (曹楠源).A Privacy-Preserving Aggregation and Authentication Scheme Towards Mobile Users in Smart Grid[J]. Journal of Shanghai Jiao Tong University (Science), 2020, 25(1): 37-43.
[15]	SUN Zhuo,LIU Dong,XIAO Anhong,MING Pingzhou,GUO Wen,ZHOU Junyi,CHEN Junjie.Information Security Analysis of Digital Control System Based on Attack Tree Model[J]. Journal of Shanghai Jiaotong University, 2019, 53(Sup.1): 68-73.