Paper 2024/1630

Hybrid Password Authentication Key Exchange in the UC Framework

You Lyu, Shanghai Jiao Tong University
Shengli Liu, Shanghai Jiao Tong University
Abstract

A hybrid cryptosystem combines two systems that fulfill the same cryptographic functionality, and its security enjoys the security of the harder one. There are many proposals for hybrid public-key encryption (hybrid PKE), hybrid signature (hybrid SIG) and hybrid authenticated key exchange (hybrid AKE). In this paper, we fill the blank of Hybrid Password Authentication Key Exchange (hybrid PAKE). For constructing hybrid PAKE, we first define an important class of PAKE -- full DH-type PAKE, from which we abstract sufficient properties to achieve UC security. Our full DH-type PAKE framework unifies lots of PAKE schemes like SPAKE2, TBPEKE, (Crs)X-GA-PAKE, and summarizes their common features for UC security. Stepping from full DH-type PAKE, we propose two generic approaches to hybrid PAKE, parallel composition and serial composition. -- We propose a generic construction of hybrid PAKE via parallel composition and prove that the hybrid PAKE by composing DH-type PAKEs in parallel is a full DH-type PAKE and hence achieves UC security, as long as one underlying DH-type PAKE is a full DH-type. -- We propose a generic construction of hybrid PAKE via serial composition, and prove that the hybrid PAKE by composing a DH-type PAKE and another PAKE in serial achieves UC security, if either the DH-type PAKE is a full DH-type or the other PAKE has UC security and the DH-type PAKE only has some statistical properties. Our generic constructions of hybrid PAKE result in a variety of hybrid PAKE schemes enjoying different nice features, like round-optimal, high efficiency, or UC security in quantum random oracle model (QROM).

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Preprint.
Keywords
PAKE
Contact author(s)
vergil @ sjtu edu cn
slliu @ sjtu edu cn
History
2024-10-14: approved
2024-10-11: received
See all versions
Short URL
https://ia.cr/2024/1630
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2024/1630,
      author = {You Lyu and Shengli Liu},
      title = {Hybrid Password Authentication Key Exchange in the {UC} Framework},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/1630},
      year = {2024},
      url = {https://eprint.iacr.org/2024/1630}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.