Deakin University
Browse

File(s) under permanent embargo

Password-authenticated group key exchange: a cross-layer design

journal contribution
posted on 2016-12-01, 00:00 authored by Yuexin Zhang, Yang Xiang, X Huang
Two-party password-Authenticated key exchange (2PAKE) protocols provide a natural mechanism for secret key establishment in distributed applications, and they have been extensively studied in past decades. However, only a few efforts have been made so far to design password-Authenticated group key exchange (GPAKE) protocols. In a 2PAKE or GPAKE protocol, it is assumed that short passwords are preshared among users. This assumption, however, would be impractical in certain applications.Motivated by this observation, this article presents a GPAKE protocol without the password sharing assumption. To obtain the passwords, wireless devices, such as smart phones, tablets, and laptops, are used to extract short secrets at the physical layer. Using the extracted secrets, users in our protocol can establish a group key at higher layers with light computation consumptions. Thus, our GPAKE protocol is a cross-layer design. Additionally, our protocol is a compiler, that is, our protocol can transform any provably secure 2PAKE protocol into a GPAKE protocol with only one more round of communications. Besides, the proposed protocol is proved secure in the standard model.

History

Journal

ACM transactions on internet technology

Volume

16

Issue

4

Article number

24

Pagination

1 - 20

Publisher

Association for Computing Machinery

Location

New York, N.Y.

ISSN

1533-5399

eISSN

1557-6051

Language

eng

Publication classification

C Journal article; C1 Refereed article in a scholarly journal

Copyright notice

2016, ACM