具有强匿名性的网关口令认证密钥交换协议

具有强匿名性的网关口令认证密钥交换协议

魏福山;马传贵

【期刊名称】《计算机学报》 【年(卷),期】2012(035)009

【摘要】Gateway-oriented password-based authenticated key exchange (GPAKE) protocol allows a client and a gateway to establish a common session key with the help of an authentication server, where the. authentication between the client and the server is done via a low-entropy password. The approach of designing GPAKE protocols with user anonymity is far from maturity and perfection. This paper presents a GPAKE protocol with strong user anonymity based on the Dif-fie-Hellman key exchange, and then proves its security under the standard DDH assumption in the random oracle model. The new protocol can resist the undetectable on-line dictionary attack and is quite efficient in terms of computation. Compared with other related protocols, the new protocol is more secure and efficient.%网关口令认证密钥交换协议允许用户和网关在服务器的协助下建立起一个共享的会话密钥,其中用户和服务器之间的认证通过低熵的口令来完成.已有的网关口令认证密钥交换协议对用户的匿名性研究不足.该文基于Diffie- Hellman密钥交换提出了具有强匿名性的网关口令认证密钥交换协议,并且在随机预言模型下基于标准的DDH假设证明了协议的安全性.新协议可以抵抗不可检测在线字典攻击并且计算效率高,安全性和计算效率都优于已有的同类协议.