Cryptology ePrint Archive: Report 2015/323

Efficient, Pairing-Free, One Round Attribute-Based Authenticated Key Exchange

Suvradip Chakraborty and Srinivasan Raghuraman and C. Pandu Rangan

Abstract: In this paper, we present a single round two-party attribute-based authenticated key exchange protocol. Since pairing is a costly operation and the composite order groups must be very large to ensure security, we focus on pairing free protocols in prime order groups. We propose a new protocol that is pairing free, working in prime order group and having tight reduction to Strong Diffie Hellman (SDH) problem under the Attribute-based CK model which is a natural extension of the CK model for the public key setting. Thus, the first major advantage is that smaller key sizes are sufficient to achieve comparable security. Our scheme has several other advantages. The major one being the capability to handle active adversaries. All the previous Attribute-Based authenticated key exchange protocols can offer security only under passive adversaries. Our protocol recognizes the corruption by an active adversary and aborts the process. Ours is the first scheme achieving this property. We also show how to modify our construction to achieve anonymity of access structure of users. Our attribute-based authenticated key exchange is also the first that enjoys this property. In addition to this property, our scheme satisfies other security properties that are not covered by CK model such as forward secrecy, key compromise impersonation attacks and ephemeral key compromise impersonation attacks.

Category / Keywords: authenticated key exchange; attribute based authenticated key exchange, CK model, ABCK model, Random Oracle Model, Forward Secrecy, Key Compromise Impersonation attacks.

Date: received 9 Apr 2015, last revised 16 Apr 2015, withdrawn 25 May 2015

Contact author: suvradip1111 at gmail com

Available format(s): (-- withdrawn --)

Note: We made some very minor changes in parameter and changed the domain of one hash function.

Version: 20150525:201445 (All versions of this report)

Short URL: ia.cr/2015/323

Discussion forum: Show discussion | Start new discussion


[ Cryptology ePrint archive ]