Cryptology ePrint Archive: Report 2007/026

Cryptanalysis and Improvement of an Elliptic Curve Diffie-Hellman Key Agreement Protocol

Shengbao Wang and Zhenfu Cao and Maurizio Adriano Strangio and Lihua Wang

Abstract: In SAC'05, Strangio proposed protocol ECKE-1 as an efficient elliptic curve Diffie-Hellman two-party key agreement protocol using public key authentication. In this letter, we show that despite the author's claims protocol ECKE-1 is vulnerable to key-compromise impersonation attacks.

We also present an improved protocol --- ECKE-1N, which can withstand such attacks. The improved protocol's performance is comparable to the well-known MQV protocol and maintains the same remarkable list of security properties.

Category / Keywords: Key agreement, elliptic curve cryptography, Diffie--Hellman protocol, key-compromise impersonation, MQV

Publication Info: IEEE Communications Letters

Date: received 26 Jan 2007, last revised 14 Dec 2007

Contact author: shengbao-wang at cs sjtu edu cn

Available format(s): Postscript (PS) | Compressed Postscript (PS.GZ) | PDF | BibTeX Citation

Note: In this letter, we propose an authenticated key agreement protocol whose performance is comparable to the well-known (H)MQV protocol. The new protocol can also be seen as a (secure) descendant of the famous MTI/C0 protocol.

Version: 20071214:080313 (All versions of this report)

Discussion forum: Show discussion | Start new discussion


[ Cryptology ePrint archive ]