Cryptology ePrint Archive: Report 2008/336

New attacks on ISO key establishment protocols

Anish Mathuria and G. Sriram

Abstract: Cheng and Comley demonstrated type flaw attacks against the key establishment mechanism 12 standardized in ISO/IEC 11770-2:1996. They also proposed enhancements to fix the security flaws in the mechanism. We show that the enhanced version proposed by Cheng and Comley is still vulnerable to type flaw attacks. As well we show that the key establishment mechanism 13 in the above standard is vulnerable to a type flaw attack.

Category / Keywords: cryptographic protocols / key management

Date: received 1 Aug 2008

Contact author: anish_mathuria at daiict ac in

Available formats: PDF | BibTeX Citation

Version: 20080803:031712 (All versions of this report)

Discussion forum: Show discussion | Start new discussion