Robust and Efficient Three-party User Authentication and Key Agreement Using Bilinear Pairings
Journal
The 3rd Joint Workshop on Information Security
Pages
85-96
Date Issued
2008-07
Author(s)
Abstract
For providing a secure distributed computer environment, flexible and robust user authentication and key agreement is very important. In addition to user authentication and key agreement, identity privacy is very useful for attracting users to share private contents. In three-party environments, both communicating parties can share separately passwords with a trusted third party rather than themselves. This approach can reduce the key management complexity when any two potential users may want to build a secure communication between them. In this paper, we propose a robust and efficient three-party password authenticated key agreement scheme using bilinear pairings. The main merits include: (1) there does not need any password or verification table in the server; (2) a user can choose or change his own password freely; (3) any two users can authenticate each other; (4) it can protect users' privacy; (5) any two users can generate an agreed session key; (6) it does not have a serious synchronization-clock problem; (7) even if the secret information stored in a user's smart card is compromised, it can prevent the offline dictionary attack. © 2010 ICIC International.
SDGs
Other Subjects
Bilinear pairing; Bilinear pairings; Session key; Session key agreement; Three-party; User authentication; Computer crime; Distributed computer systems; Smart cards; Authentication
Type
conference paper