authors
- GONZALEZ VASCO, MARIA ISABEL
- PÉREZ DEL POZO, ANGEL
- SUAREZ CORONA, ADRIANA
Pitfalls in a server-aided authenticated group key establishment
Articles
Overview
published in
- INFORMATION SCIENCES Journal
publication date
- October 2016
start page
- 1
end page
- 7
volume
- 363
Digital Object Identifier (DOI)
International Standard Serial Number (ISSN)
- 0020-0255
Electronic International Standard Serial Number (EISSN)
- 1872-6291
abstract
- In this paper, we present a cryptanalysis of a recently proposed server-aided group key agreement scheme by Sun et al. This proposal is designed for mobile environments, in which a group of users aim at establishing a common secret key with the help of a semi trusted server. At this, authentication is achieved using certificateless public key cryptography. We evidence that the scheme does not achieve forward secrecy, is vulnerable to a known session attack (that can, for instance, be mounted by a semi-honest server) and is not (as claimed by the authors) contributory. Further security hardships in more restricted models (i.e. in which stronger corruptions are allowed) are also discussed.
Classification
subjects
- Computer Science
- Mathematics
keywords
- provable secure group key agreement; certificateless signatures; cryptanalysis; server-aided key exchange