Anonymity and one-way authentication in key exchange protocols
Goldberg, Ian and Stebila, Douglas and Ustaoğlu, Berkant (2013) Anonymity and one-way authentication in key exchange protocols. Designs, Codes, and Cryptography, 67 (2). pp. 245-269. ISSN 0925-1022 (Print) 1573-7586 (Online)
Full text not available from this repository.
Official URL: http://dx.doi.org/10.1007/s10623-011-9604-z
Key establishment is a crucial cryptographic primitive for building secure communication channels between two parties in a network. It has been studied extensively in theory and widely deployed in practice. In the research literature a typical protocol in the public-key setting aims for key secrecy and mutual authentication. However, there are many important practical scenarios where mutual authentication is undesirable, such as in anonymity networks like Tor, or is difficult to achieve due to insufficient public-key infrastructure at the user level, as is the case on the Internet today. In this work we are concerned with the scenario where two parties establish a private shared session key, but only one party authenticates to the other; in fact, the unauthenticated party may wish to have strong anonymity guarantees. We present a desirable set of security, authentication, and anonymity goals for this setting and develop a model which captures these properties. Our approach allows for clients to choose among different levels of authentication. We also describe an attack on a previous protocol of verlier and Syverson, and present a new, efficient key exchange protocol that provides one-way authentication and anonymity.
Repository Staff Only: item control page