Secure Tripartite STS Key Agreement Protocol in Random Oracle Model

安全的三方式STS金鑰協訂

10.6382/JIM.201104.0215

李金鳳(Chin-Feng Lee)；簡宏宇(Hung-Yu Chien)；賴溪松(Chi-Sung Lai)

安全 ； 金鑰協商協議 ； 內部攻擊 ； STS ； 向前安全 ； 中間人攻擊 ； security ； key agreement ； insider attack ； STS ； forward secrecy ； man-in-the-middle attack

資訊管理學報

18卷2期（2011 / 04 / 01）

215 - 235

英文

著名的STS通訊協訂可提供雙方認證、金鑰確認、及向前安全等功能。在2003年Al-Riyami及Paterson學者將STS協訂擴充成三方式認證金鑰，並稱之為TAKC-STS協訂；迄今，學界認為TAKC-STS協訂可提供足夠安全並可達成最好的回合數。此篇論文將指出此機制無法抵擋中間人攻擊及內部攻擊；我們也將提出一安全的三方式認證金鑰並證明其安全。

The Station-to-Station (STS) protocol is a well known two-party key agreement scheme that provides mutual entity authentication, key confirmation and forward secrecy. Al-Riyami and Paterson (2003) extended the STS protocol to the tripartite case, which is called TAKC-STS and is believed to be secure and pass-optimal for tripartite key confirmation protocols. However, in this paper, we will show that the TAKC-STS protocol cannot resist the man-in-the-middle attack and the insider attack. We then propose a secure tripartite STS protocol to conquer the weaknesses, and prove the security in the random oracle model.

1. Chien, H. Y.(2006).ID-based Tripartite Multiple Key Agreement Protocol facilitating Computer Auditing and Transaction Refereeing.Journal of Information Management,13(4),185-204.
   連結：
2. Al-Riyami, S. S.,Paterson, K. G.(2003).Tripartite Authenticated Key Agreement Protocols from Pairings.IMA Conference on Cryptography and Coding, LNCS 2898
3. Al-Riyami, S. S.,Paterson, K. G.(2002).Cryptology ePrint ArchiveCryptology ePrint Archive,未出版
4. Bellare, M.,Pointcheval, D.,Rogaway, P.(2000).Authenticated key exchange secure against dictionary attacks.Eurocrypt
5. Bellare, M.,Rogaway, P.(1995).Provably secure session key distribution: The three party case.27th ACM Symposium on the Theory of Computing
6. Burrows, M.,Abadi, M.,Needham, R.(1990).A logic of authentication.ACM TRANSACTIONS ON COMPUTER SYSTEMS,8(1),18-36.
7. Canetti, R.,Goldreich, O.,Halevi, S.(2004).The random oracle methodology, revisited.Journal of the ACM,51(4),557-591.
8. Canetti, R.,Krawczyk, H.(2001).Analysis of key-exchange protocols and their use for building secure channels.Eurocrypt
9. Chien, H. Y.(2005).Cryptology ePrint ArchiveCryptology ePrint Archive,未出版
10. Chien, H. Y.,Lin, R. Y.(2008).Improved ID-based security framework for ad hoc network.Ad Hoc Networks,6(1),47-60.
11. Chien, H. Y.,Wang, R. C.,Yang, C. C.(2005).Note on Robust and Simple Authentication Protocol.The Computer Journal,48(1),27-29.
12. Chien, H. Y.,Wu, T. C.,Jan, J. K.,Tseng, Y. M.(2001).Cryptanalysis of Chang-Wu's Group-oriented Authentication and Key Exchange Protocols.Information Processing Letters,80(2),113-117.
13. Diffie, W.,van Oorshot, P.C.,Wiener, M.(1992).Authentication and authenticated key exchanges.Designs, codes, and Cryptography,2(2),107-125.
14. Horng, G.,Liu, C.-L.,Liu, H.-Y.(2004).Security Analysis of a Tripartite Authenticated Key Agreement Protocol Based on Weil Pairing.ICS 2004 - International Computer Symposium,Taiwan:
15. Joux, A.(2000).A "One round protocol for tripartite Diffie-Hellman".ANTS IV
16. Lin, C. H.,Lin, H. H.(2005).Secure One-Round Tripartite Authenticated Key Agreement Protocol from Weil Pairing.Proceedings of International Conference on Advanced Information Networking and Applications (AINA 2005)
17. Lu, R.,Cao, Z.,Wang, S. B.,Bao, H. Y.(2007).A New ID-Based Deniable Authentication Protocol.Informatica,18(1),67-78.
18. O''Higgins, B.,Diffie, W.,Strawcznski, L.,Hoog, R.(1987).Encryption and ISDN-A Natural Fit.International Switching Symposium (ISS87)
19. Raymond, C. K. K.,Colin, B.,Yvonne, H.(2005).Examining indistinguishability-based proof models for key establishment protocols.ASIACRYPT 2005
20. Shim, K.(2003).Efficient one round tripartite authenticated key agreement protocol from Weil pairing.Electron. Lett.,39(2),208-209.
21. Shim, K.(2003).Cryptology ePrint ArchiveCryptology ePrint Archive,未出版