Cryptology ePrint Archive: Report 2007/420

A Critical Analysis and Improvement of AACS Drive-Host Authentication

Jiayuan Sui and Douglas R. Stinson

Abstract: This paper presents a critical analysis of the AACS drive-host authentication scheme. A few weaknesses are identified which could lead to various attacks on the scheme. In particular, we observe that the scheme is susceptible to unknown key-share and man-in-the-middle attacks. Modifications of the scheme are suggested in order to provide better security. A proof of security of the modified scheme is also presented. The modified scheme achieves better efficiency than the original scheme.

Category / Keywords: applications / AACS, authentication, key agreement, unknown key-share attack, Station-to-Station protocol.

Date: received 5 Nov 2007

Contact author: jsui at cs uwaterloo ca

Available format(s): PDF | BibTeX Citation

Version: 20071106:091944 (All versions of this report)

Short URL: ia.cr/2007/420

Discussion forum: Show discussion | Start new discussion