Sciweavers

CRYPTO
2006
Springer

A Method for Making Password-Based Key Exchange Resilient to Server Compromise

14 years 4 months ago
A Method for Making Password-Based Key Exchange Resilient to Server Compromise
This paper considers the problem of password-authenticated key exchange (PAKE) in a client-server setting, where the server authenticates using a stored password file, and it is desirable to maintain some degree of security even if the server is compromised. A PAKE scheme is said to be resilient to server compromise if an adversary who compromises the server must at least perform an offline dictionary attack to gain any advantage in impersonating a client. (Of course, offline dictionary attacks should be infeasible in the absence of server compromise.) One can see that this is the best security possible, since by definition the password file has enough information to allow one to play the role of the server, and thus to verify passwords in an offline dictionary attack. While some previous PAKE schemes have been proven resilient to server compromise, there was no known general technique to take an arbitrary PAKE scheme and make it provably resilient to server compromise. This paper pres...
Craig Gentry, Philip D. MacKenzie, Zulfikar Ramzan
Added 20 Aug 2010
Updated 20 Aug 2010
Type Conference
Year 2006
Where CRYPTO
Authors Craig Gentry, Philip D. MacKenzie, Zulfikar Ramzan
Comments (0)