In this paper, we propose an efficient identity-based password authenticated key exchange (IBPAKE) protocol using identitybased KEM/DEM. In IBPAKE, a client conducts authentication based on a human-memorable password and a server’s identity. A distinctive feature of IBPAKE protocols, compared to the well-known EKE-like PAKE protocols, is that an adversary who even acquired a user’s password cannot impersonate a server to further investigate user’s sensitive information. We first construct the new IBPAKE protocol using the Boneh- Franklin identity-based encryption (IBE) scheme, and then generalize the protocol by presenting a generic method to yield an efficient IBPAKE protocol from identity-based KEM/DEM. Our fine-grained approach has concrete advantages in terms of performance. First, unnecessary parameters can be removed easily. This allows a straightforward improvement on computational cost and communication bandwidth. Our protocol gives better performance, compared to previously known IBPAKE protocols.
|Title of host publication||Information Security Applications - 16th International Workshop, WISA 2015, Revised Selected Papers|
|Editors||Dooho Choi, Ho-Won Kim|
|Number of pages||12|
|Publication status||Published - 2016|
|Event||16th International Workshop on Information Security Applications, WISA 2015 - Jeju Island, Korea, Republic of|
Duration: 2015 Aug 20 → 2015 Aug 22
|Name||Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)|
|Other||16th International Workshop on Information Security Applications, WISA 2015|
|Country/Territory||Korea, Republic of|
|Period||15/8/20 → 15/8/22|
Bibliographical noteFunding Information:
J.Y. Hwang—This work was supported by the ICT R and D program of MSIP/IITP [B1206-15-1007, Development of Universal Authentication Platform Technology with Context-Aware Multi-Factor Authentication and Digital Signature].
© Springer International Publishing Switzerland 2016.
All Science Journal Classification (ASJC) codes
- Theoretical Computer Science
- Computer Science(all)