Cryptology ePrint Archive: Report 2007/189

An Improved One-Round ID-Based Tripartite Authenticated Key Agreement Protocol

Meng-Hui Lim and Sanggon Lee

Abstract: A tripartite authenticated key agreement protocol is generally designed to accommodate the need of three specific entities in communicating over an open network with a shared secret key, which is used to preserve confidentiality and data integrity. Since Joux initiates the development of tripartite key agreement protocol, many prominent tripartite schemes have been proposed subsequently. In 2005, Tso et al. have proposed an ID-based non-interactive tripartite key agreement scheme with k-resilience. Based on this scheme, they have further proposed another one-round tripartite application scheme. Although they claimed that both schemes are efficient and secure, we discover that both schemes are in fact breakable. In this paper, we impose several impersonation attacks on Tso et al.'s schemes in order to highlight their flaws. Subsequently, we propose an enhanced scheme which will not only conquer their defects, but also preserve the desired security attributes of a key agreement protocol.

Category / Keywords: cryptographic protocols / Key Agreement Protocol, Authentication, Tripartite, Impersonation Attacks

Date: received 20 May 2007

Contact author: meng17121983 at yahoo com

Available format(s): Postscript (PS) | Compressed Postscript (PS.GZ) | PDF | BibTeX Citation

Version: 20070522:202537 (All versions of this report)

Short URL: ia.cr/2007/189