Paper 2024/012

Two-Round ID-PAKE with strong PFS and single pairing operation

Behnam Zahednejad
Gao Chong-zhi
Abstract

IDentity-based Password Authentication and Key Establishment (ID-PAKE) is an interesting trade-off between the security and efficiency, specially due to the removal of costly Public Key Infrastructure (PKI). However, we observe that previous PAKE schemes such as Beguinet et al. (ACNS 2023), Pan et al. (ASIACRYPT 2023) , Abdallah et al. (CRYPTO 2020) etc. fail to achieve important security properties such as weak/strong Perfect Forward Secrecy (s-PFS), user authentication and resistance to replay attack. In addition, to the best of our knowledge, no previous (P)AKE (either ID- based or PKI-based (P)AKEs) could achieve s-PFS with two-rounds of communication. In this paper, we propose a highly efficient ID-PAKE scheme with s-PFS and KGC-FS using only two rounds of communication, where each party only performs a single pairing operation. We compare our work with previous single pairing-based schemes i.e. Tomida et al. (ESORICS 2019) and Lian et al. (ESORICS 2020) and show that they suffer either s-PFS, KGC-FS attack and replay attack. In order to achieve a privacy-preserving PAKE scheme, we give a fix to Lian et al. (ESORICS 2020) in terms of KGC-FS and user authentication. We prove the security of our scheme under standard assumptions such as Discrete Logarithms (DL) and q-strong Diffie-Hellman(q-sDH) assumption in ID-eCK model. Finally, we conduct a proof-of-concept implementation of our scheme vs. previous single pairing-based schemes and show that our scheme imposes the least computation cost and stands in the middle of previous scheme regarding communication cost.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Preprint.
Keywords
Strong-Perfect Forward Secrecy(s-PFS)KGC-FSuser authentication
Contact author(s)
bzahednezhad @ gmail com
1111906012 @ e gzhu edu cn
History
2024-01-05: approved
2024-01-04: received
See all versions
Short URL
https://ia.cr/2024/012
License
No rights reserved
CC0

BibTeX

@misc{cryptoeprint:2024/012,
      author = {Behnam Zahednejad and Gao Chong-zhi},
      title = {Two-Round {ID}-{PAKE} with strong {PFS} and single pairing operation},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/012},
      year = {2024},
      url = {https://eprint.iacr.org/2024/012}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.