Luoyang Univ Foreign Languages, POB 036-150, Luoyang 471003, Henan Province, Peoples R China. Chinese Acad Sci, Inst Software, State Key Lab Informat Secur, Beijing 100093, Peoples R China. Sci & Technol Informat Assurance Lab, Beijing 100072, Peoples R China.
Abstract:
The SMEN protocol, proposed by Wu and Ustaoglu in 2009, has been considered to be secure as the authors claimed, and numerous theories are proposed based on this protocol. This paper analyzes the SMEN protocol and finds that this protocol is not resistant to the session corruption attack and the key compromise impersonation attack. Then, we propose an improved protocol with tight security reduction. Our improved protocol not only avoids the above attacks but also embraces the same efficiency as the SMEN protocol in terms of exponentiation. Besides, formal analysis of the improved protocol is presented by using the formal automatic security analysis tool Scyther. Copyright (c) 2014 John Wiley & Sons, Ltd.
English Abstract:
The SMEN protocol, proposed by Wu and Ustaoglu in 2009, has been considered to be secure as the authors claimed, and numerous theories are proposed based on this protocol. This paper analyzes the SMEN protocol and finds that this protocol is not resistant to the session corruption attack and the key compromise impersonation attack. Then, we propose an improved protocol with tight security reduction. Our improved protocol not only avoids the above attacks but also embraces the same efficiency as the SMEN protocol in terms of exponentiation. Besides, formal analysis of the improved protocol is presented by using the formal automatic security analysis tool Scyther. Copyright (c) 2014 John Wiley & Sons, Ltd.
Lu, SQ,Zhao, JH,Cheng, QF. Cryptanalysis and improvement of an efficient authenticated key exchange protocol with tight security reduction[J]. INTERNATIONAL JOURNAL OF COMMUNICATION SYSTEMS,2016-01-01,29(3):567-578.
