On Security Analysis of Generic Dynamic Authenticated Group Key Exchange

Z. Yang, M. Khan, Wanping Liu, Jun He

Forskningsoutput: Kapitel i bok/rapport/konferenshandlingKonferensbidragVetenskapligPeer review


Authenticated group key exchange (AGKE) represents an essential class of group key exchange (GKE) protocols, which is secure against active attackers. Dynamic AGKE allows for very efficient group membership changes (join, leave, merge and partition, etc.) during protocol executions. In this paper, a security model is developed for generic dynamic AGKE to cover more active attacks than previous similar models (such as leakage of ephemeral secret key, and key compromise impersonation attacks). The proposed model is particularly suitable for generic AGKE in which the GKE protocol is firstly executed in a black-box manner, and then the authentication protocol is executed. We also study the security analysis problems of this class of generic dynamic AGKE protocols with strong security. Based on the proposed model, we study a modular approach to design secure dynamic AGKE via a generic transformation called as a compiler. A new signature-based protocol compiler is proposed for building secure generic dynamic AGKE. Specifically, the compiler takes as input a passively forward secure GKE protocol and a secure signature scheme, and output a secure AGKE protocol without any modification on the GKE protocol. © 2018, Springer Nature Switzerland AG.
Titel på gästpublikationSecure IT Systems : 23rd Nordic Conference, NordSec 2018, Oslo, Norway, November 28-30, 2018, Proceedings
RedaktörerNils Gruschka
Antal sidor17
FörlagSpringer International Publishing
ISBN (tryckt)978-3-030-03637-9
ISBN (elektroniskt)978-3-030-03638-6
StatusPublicerad - 2018
MoE-publikationstypA4 Artikel i en konferenspublikation
EvenemangNordic Conference on Secure IT Systems - Oslo, Norge
Varaktighet: 28 nov 201830 nov 2018
Konferensnummer: 23


NamnLecture Notes in Computer Science
ISSN (tryckt)0302-9743
ISSN (elektroniskt)1611-3349


  • 113 Data- och informationsvetenskap

Citera det här