Verifier-based Password-Authenticated Key Ezchange Protocol in Cross-Realm Setting
Most existing password-based authenticated key exchange(PAKE) protocols in cross-realm setting are based on balance scheme, which is vulnerable to password guessing attacks and server compromise attack. In this paper, we propose a verifier-based PAKE protocol in cross-realm setting called VB-4PAKE, in which the client uses a plaintext version of the password, while the server stores a verifier of the password. We also show that the proposed protocol can resist various attacks including password guessing attacks and server compromise attack.
PAKE Server compromise attack Verifier-based Cross-realm
Xiumei Liu Fucai Zhou Guiran Chang
School of Information Science & Engineering, Northeastern University, Shenyang 110004, China
国际会议
2009年中国控制与决策会议(2009 Chinese Control and Decision Conference)
广西桂林
英文
5560-5563
2009-06-17(万方平台首次上网日期,不代表论文的发表时间)