Cryptology ePrint Archive: Report 2008/001

Security Proof for the Improved Ryu-Yoon-Yoo Identity-Based Key Agreement Protocol

Shengbao Wang and Zhenfu Cao and Kim-Kwang Raymond Choo and Lihua Wang

Abstract: Key agreement protocols are essential for secure communications in open and distributed environments. The protocol design is, however, extremely error-prone as evidenced by the iterative process of fixing discovered attacks on published protocols. We revisit an efficient identity-based (ID-based) key agreement protocol due to Ryu, Yoon and Yoo. The protocol is highly efficient and suitable for real-world applications despite offering no resilience against key-compromise impersonation (K-CI). We then show that the protocol is, in fact, insecure against reflection attacks. A slight modification to the protocol is proposed, which results in significant benefits for the security of the protocol without compromising on its efficiency. Finally, we prove the improved protocol secure in a widely accepted model.

Category / Keywords: cryptographic protocols / key agreement protocol, modular security proof

Date: received 29 Dec 2007

Contact author: shengbaowang at gmail com

Available format(s): Postscript (PS) | Compressed Postscript (PS.GZ) | PDF | BibTeX Citation

Note: In this paper, the security of the ID-based version of the famous UMP protocol is studied.

Version: 20080103:133603 (All versions of this report)

Short URL: ia.cr/2008/001

Discussion forum: Show discussion | Start new discussion