Cryptology ePrint Archive: Report 2010/206

Authentication protocols based on low-bandwidth unspoofable channels: a comparative survey

Long Hoang Nguyen and Andrew William Roscoe

Abstract: One of the main challenges in pervasive computing is how we can establish secure communication over an untrusted high-bandwidth network without any initial knowledge or a Public Key Infrastructure. An approach studied by a number of researchers is building security though human work creating a low-bandwidth empirical (or authentication) channel where the transmitted information is authentic and cannot be faked or modified. In this paper, we give an analytical survey of authentication protocols of this type. We start with non-interactive authentication schemes, and then move on to analyse a number of strategies used to build interactive pair-wise and group protocols that minimise the human work relative to the amount of security obtained as well as optimising the computation processing. In studying these protocols, we will discover that their security is underlined by the idea of commitment before knowledge, which is refined by two protocol design principles introduced in this survey.

Category / Keywords: cryptographic protocols / Authentication protocol using human interactions

Publication Info: This is the extended version of a paper which has been accepted and is going to appear on Journal of Computer Security

Date: received 14 Apr 2010

Contact author: long nguyen at comlab ox ac uk

Available format(s): PDF | BibTeX Citation

Version: 20100419:174340 (All versions of this report)

Short URL:

Discussion forum: Show discussion | Start new discussion

[ Cryptology ePrint archive ]