Cryptology ePrint Archive: Report 2010/052

Cryptanalysis and Improvement of a New Gateway-Oriented Password-Based Authenticated Key Exchange Protocol

FuShan Wei and QingFeng Cheng and ChuanGui Ma

Abstract: Abdalla et al. proposed the first gateway-oriented password-based authenticated key exchange (GPAKE) protocol. The security goal of GPAKE is to securely establish a session key between the client and the gateway by the help of the authentication server without revealing any information of the password to the gateway. However, Byun et al. showed that the original GPAKE protocol was suspectable to an undetectable on-line dictionary attack by a malicious gateway. Recently, Abdalla et al. presented a new variant of the original GPAKE protocol to resist Byun et al.'s attack. In this letter, we show that the new GPAKE protocol is still vulnerable to another simple but powerful undetectable on-line dictionary attack. We then make a suggestion for improvement.

Category / Keywords: cryptographic protocols / authenticated key exchange, password, undetectable on-line dictionary attack

Date: received 31 Jan 2010, withdrawn 2 Feb 2010

Contact author: weifs831020 at 163 com

Available formats: (-- withdrawn --)

Version: 20100202:092937 (All versions of this report)

Discussion forum: Show discussion | Start new discussion