Cryptology ePrint Archive: Report 2015/1237

On the Security of One Password Authenticated Key Exchange Protocol

Stanislav V. Smyshlyaev and Igor B. Oshkin and Evgeniy K. Alekseev and Liliya R. Ahmetzyanova

Abstract: In this paper the Security Evaluated Standardized Password Authenticated Key Exchange (SESPAKE) protocol is proposed (this protocol is approved in the standardization system of the Russian Federation) and its cryptographic properties are analyzed. The SESPAKE protocol includes a key agreement step and a key authentication step. We define new indistinguishability-based adversary model with a threat of false authentication that is an extension of the original indistinguishability-based model up to the case of protocols with authentication step without key diversification. We prove the protocol security under two types of threats: a classic threat of distinguishing a generated session key from a random string and a threat of false authentication. This protocol is the first password authenticated key exchange protocol (PAKE) protocol without key diversification for a full version of which a security proof has been obtained. The paper also contains a brief review of the known results dedicated to analysis of cryptographic properties of PAKE protocols.

Category / Keywords: cryptographic protocols / key establishment, PAKE protocols

Date: received 30 Dec 2015

Contact author: smyshsv at gmail com

Available format(s): PDF | BibTeX Citation

Version: 20151231:164517 (All versions of this report)

Short URL: ia.cr/2015/1237

Discussion forum: Show discussion | Start new discussion