Anonymity and one-way authentication in key exchange protocols

Goldberg, Ian and Stebila, Douglas and Ustaoğlu, Berkant (2013) Anonymity and one-way authentication in key exchange protocols. Designs, Codes, and Cryptography, 67 (2). pp. 245-269. ISSN 0925-1022 (Print) 1573-7586 (Online)

Full text not available from this repository. (Request a copy)

Abstract

Key establishment is a crucial cryptographic primitive for building secure communication channels between two parties in a network. It has been studied extensively in theory and widely deployed in practice. In the research literature a typical protocol in the public-key setting aims for key secrecy and mutual authentication. However, there are many important practical scenarios where mutual authentication is undesirable, such as in anonymity networks like Tor, or is difficult to achieve due to insufficient public-key infrastructure at the user level, as is the case on the Internet today. In this work we are concerned with the scenario where two parties establish a private shared session key, but only one party authenticates to the other; in fact, the unauthenticated party may wish to have strong anonymity guarantees. We present a desirable set of security, authentication, and anonymity goals for this setting and develop a model which captures these properties. Our approach allows for clients to choose among different levels of authentication. We also describe an attack on a previous protocol of verlier and Syverson, and present a new, efficient key exchange protocol that provides one-way authentication and anonymity.
Item Type: Article
Uncontrolled Keywords: Key exchange; One-way authentication; Anonymity; Tor network; Protocols; Security models
Divisions: Faculty of Engineering and Natural Sciences
Depositing User: Berkant Ustaoğlu
Date Deposited: 04 Feb 2015 15:51
Last Modified: 31 Jul 2019 16:36
URI: https://research.sabanciuniv.edu/id/eprint/26705

Actions (login required)

View Item
View Item