XU Chun-xiang, LUO Shu-dan. Security Analysis on S-3PAKE Protocol[J]. Journal of University of Electronic Science and Technology of China, 2009, 38(4): 583-587. DOI: 10.3969/j.issn.1001-0548.2009.04.025
Citation:
XU Chun-xiang, LUO Shu-dan. Security Analysis on S-3PAKE Protocol[J]. Journal of University of Electronic Science and Technology of China, 2009, 38(4): 583-587. DOI: 10.3969/j.issn.1001-0548.2009.04.025
XU Chun-xiang, LUO Shu-dan. Security Analysis on S-3PAKE Protocol[J]. Journal of University of Electronic Science and Technology of China, 2009, 38(4): 583-587. DOI: 10.3969/j.issn.1001-0548.2009.04.025
Citation:
XU Chun-xiang, LUO Shu-dan. Security Analysis on S-3PAKE Protocol[J]. Journal of University of Electronic Science and Technology of China, 2009, 38(4): 583-587. DOI: 10.3969/j.issn.1001-0548.2009.04.025
The three-party password-based authenticated key exchange protocol based on the CCDH assumption is analyzed. It is demonstrated that this protocol has security vulnerabilities from on-line guessing attack and lacks a perfect authentication mechanism. This paper presents an attack scheme to the protocol. Our attack scheme shows that an adversary can get other legitimate user's password successfully by on-line guessing cyclically.
ISSN 
DownLoad: