An Enhanced Two-Party Key Agreement Protocol in the Key Escrow Mode
In an open and distributed environment, authenticated key agreement protocol, as an important cryptographic primitive, is used to authenticate entities and establish session key in order to provide secure communications. Key escrow is essential in situations where confidentiality and audit trail are legal requirements, whilst perfect forward secrecy and known sessionspecific temporary information secrecy attributes are desirable to provide stronger security. In this paper, we give a cryptanalysis on the scheme due to Wang et al., which is based on the identitybased encryption scheme proposed by Gentry (Eurocrypt06), and then present an enhanced secure two-party identity-based authenticated key agreement protocol. The new proposed protocol achieves most of the required security attributes and can be used properly in the escrow mode. Security analysis shows that it achieves the attributes of known-key secrecy, keycompromise impersonation resilience, unknown key-share resilience and no key control. In addition, it captures the perfect forward secrecy and known session-specific temporary information secrecy attributes.
key agreement protocol key escrow perfect forward secrecy key-compromise impersonation key control
Mengbo Hou Qiuliang Xu
School of Computer Science and Technology Shandong University Jinan, 250101, China
国际会议
武汉
英文
1112-1115
2009-11-18(万方平台首次上网日期,不代表论文的发表时间)