Reusing Static Keys in Key Agreement Protocols

14 years 6 months ago

Download www.cacr.math.uwaterloo.ca

Abstract. Contrary to conventional cryptographic wisdom, the NIST SP 800-56A standard explicitly allows the use of a static key pair in more than one of the key establishment protocols described in the standard. In this paper, we give examples of key establishment protocols that are individually secure, but which are insecure when static key pairs are reused in two of the protocols. We also propose an enhancement of the extended Canetti-Krawczyk security model and deﬁnition for the situation where static public keys are reused in two or more key agreement protocols.

Sanjit Chatterjee, Alfred Menezes, Berkant Ustaogl

Real-time Traffic

Cryptology | INDOCRYPT 2009 | Key Agreement Protocols | Key Establishment Protocols | Static Key Pairs |

claim paper

Post Info
More Details (n/a)

Added	26 May 2010
Updated	26 May 2010
Type	Conference
Year	2009
Where	INDOCRYPT
Authors	Sanjit Chatterjee, Alfred Menezes, Berkant Ustaoglu

Comments (0)

Sciweavers

Reusing Static Keys in Key Agreement Protocols

Cryptology | INDOCRYPT 2009 | Key Agreement Protocols | Key Establishment Protocols | Static Key Pairs |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers