Zeyu Yang,Ziqing Wang,Fei Qiu,Fagen Li

DOI: https://doi.org/10.1016/j.jisa.2022.103388

IF: 4.96

2023-01-01

Journal of Information Security and Applications

Abstract:A group key agreement protocol allows a set of users to establish a common session key over an open network. A dynamic contributory group key agreement (DCGKA) protocol generates a session key based on contributions of all group members and allows a member to dynamically join or leave this group. Although current DCGKA can resist passive attacks, it cannot resist positive attacks like the man-in-the-middle (MITM) attack. In this paper, we propose a dynamic contributory Group Key Agreement protocol by using Short Signature (called GKA-SS) which uses bilinear map to accomplish the signature and the verification processes. The formal security proof shows that our protocol can resist both active and passive attacks under random oracle model. The informal security analysis indicates that our protocol can obtain backward secrecy, forward secrecy, etc. Besides, we analyze the communication and computation cost of our protocol and simulate it with pypbc library. As compared with TGECDH, our protocol is 2.4 times faster in join phase and 29 times faster in leave phase, when p is 512 bits, q is 160 bits and group size is 256.

Hu Xiong,Yan Wu,Zhenyu Lu

DOI: https://doi.org/10.1145/3318460

IF: 16.6

2019-01-01

ACM Computing Surveys

Abstract:Group key agreement (shorten as GKA) protocol enables a group of users to negotiate a one-time session key and protect the thereafter group-oriented communication with this session key across an unreliable network. The number of communication rounds is one of the main concern for practical applications where the cardinality of group participants involved is considerable. It is critical to have fixed constant rounds in GKA protocols to secure these applications. In light of overwhelming variety and multitude of constant-round GKA protocols, this article surveys these protocols from a series of perspectives to supply better comprehension for researchers and scholars. Concretely, this article captures the state of the art of constant-round GKA protocols by analyzing the design rationale, examining the framework and security model, and evaluating all discussed protocols in terms of efficiency and security properties. In addition, this article discusses the extension of constant-round GKA protocols including dynamic membership updating, password-based, affiliation-hiding, and fault-tolerance. In conclusion, this article also points out a number of interesting future directions.

Kui Ren,Hyunrok Lee,Kwangjo Kim,Taewhan Yoo

DOI: https://doi.org/10.1007/978-3-540-31815-6_13

2005-01-01

Abstract:Group key management presents a fundamental challenge in secure dynamic group communications. In this paper, we propose an efficient group authenticated key agreement protocol (EGAKA), which is designed to be fully distributed and fault-tolerant, provides efficient dynamic group membership management, mutual authentication among group members and is secure against both passive and active attacks. The features of EGAKA are as follows: Firstly, EGAKA can be built on any general two-party key exchange protocol without relying on a particular one. EGAKA achieves scalability and robustness in heterogenous environments by allowing members to use any available two-party protocol in common and deliberately designed fault-tolerant mechanism in dynamic membership management. Secondly, EGAKA provides extremely efficient member join services in terms of both communication and computation costs which are constant to the group size. This is a very useful property in the scenarios with frequent member addition.

Zhang Qikun,Wang Bingli,Zhang Xiaosong,Yuan Junling,Wang Ruifang

DOI: https://doi.org/10.1049/cje.2020.02.020

IF: 1.019

2020-01-01

Chinese Journal of Electronics

Abstract:Group key agreement (GKA) is one of the key technologies for ensuring information exchange security among group members. While GKA is widely used in secure multi-party computation, safety of resources sharing, and distributed collaborative computing. It still has some security flaws and limitations. We proposes a Blockchain-based dynamic Group key agreement (BDGKA) protocol. In contrast to prior works, BDGKA differs in several significant ways: 1) anonymous identity authenticationit can prevent privacy leaks; 2) traceability-it can track illegal operating entities; 3) load balancing-it balances computation and communication to each node, avoiding the breakdown of single-point and network bottlenecks. This protocol is proven secure under the hardness assumption of decision bilinear DiffieHellman. The performance analysis shows that it is more efficient than the referred works.

Zilong Wang,Honggang Hu

DOI: https://doi.org/10.1007/978-981-13-3095-7_8

2018-01-01

Abstract:Lattice-based cryptographic primitives are believed to have the property against attacks by quantum computers. In this work, we present a KEA-style authenticated key exchange protocol based on the ring learning with errors problem whose security is proven in the BR model with weak perfect forward secrecy. With properties of KEA such as implicit key authentication and simplicity, our protocol also enjoys many properties of lattice-based cryptography, namely asymptotic efficiency, conceptual simplicity, worst-case hardness assumption, and resistance to attacks by quantum computers. Our lattice-based authenticated key exchange protocol is more efficient than the protocol of Zhang et al. (EUROCRYPT 2015) with more concise structure, smaller key size and lower bandwidth. Also, our protocol enjoys the advantage of optimal online efficiency and we improve our protocol with pre-computation.

Jianjie Zhao,Dawu Gu,Yali Li

DOI: https://doi.org/10.1016/j.comcom.2010.01.001

IF: 5.047

2010-01-01

Computer Communications

Abstract:Group key agreement (GKA) is a mechanism important for establishing a session key used to encrypt and/or decrypt sensitive messages transmitted to an intended group of receivers in an open network. An efficient group key agreement protocol capable of fault-tolerance named efficient GKA (EGKA) is proposed in this paper. EGKA is not only resistant to DoS attacks, replay attacks, man-in-the-middle attacks and common modulus attacks but also achieves forward secrecy. The efficiency analysis shows that EGKA is more efficient than previous fault-tolerant GKA protocols mentioned in our paper. Moreover, the long-term keys of participants can be reused which reduce the computational burden of the server.

Jianjie Zhao,Dawu Gu,M. Choudary Gorantla

DOI: https://doi.org/10.1145/1966913.1966975

2010-01-01

Abstract:ABSTRACTIn PKC 2009, Gorantla, Boyd and González Nieto presented a nice result on modelling security for group key agreement (GKA) protocols. They proposed a novel security model (GBG model) that better supports the adversaries' queries than previous models for GKA protocols by considering KCI resilience. However, ephemeral key leakage attack resistance has been left outside the scope of the GBG model. In this paper, we demonstrate an ephemeral key leakage on an existing GKA protocol which has been shown secure in the GBG model. We then extend the GBG model by allowing the adversary greater attack powers of leaking ephemeral keys in GKA protocol session. We also apply the well known NAX-OS trick to propose an improvement to an existing GKA protocol, which can resist the ephemeral key leakage attack. The security of the improved protocol has been argued under the our new model.

Qiang Zhao,Zhuohua Li,John C.S. Lui

2023-12-07

Abstract:Quantum key distribution (QKD) protocols are essential to guarantee information-theoretic security in quantum communication. Although there was some previous work on quantum group key distribution, they still face many challenges under a ``\textit{dynamic}'' group communication scenario. In particular, when the group keys need to be updated in real-time for each user joining or leaving to ensure secure communication properties, i.e., forward confidentiality and backward confidentiality. However, current protocols require a large amount of quantum resources to update the group keys, and this makes them impractical for handling large and dynamic communication groups. In this paper, we apply the notion of ``{\em tree key graph}'' to the quantum key agreement and propose two dynamic Quantum Group Key Agreement (QGKA) protocols for a join or leave request in group communications. In addition, we analyze the quantum resource consumption of our proposed protocols. The number of qubits required per join or leave only increases logarithmically with the group size. As a result, our proposed protocols are more practical and scalable for large and dynamic quantum group communications.

Quantum Physics

Zhang, Kuan,Wang, Haoyang,Wang, Yirui,Yang, Kan

DOI: https://doi.org/10.1007/s12083-024-01676-0

IF: 3.488

2024-04-18

Peer-to-Peer Networking and Applications

Abstract:The authenticated key agreement (AKA) method used in the Internet of Things (IoT) provides identity authentication and agreed symmetric keys to encrypt large amounts of communication messages for devices and servers. With the rapid development of quantum computers and quantum algorithms, classical cryptographic algorithms become vulnerable to attacks by adversaries, leading to significant risks in IoT communication systems. Numerous lattice-based authentication key agreement (AKA) schemes have emerged to fortify communication systems against quantum attacks. However, due to the large size of the lattice cryptography public key, an excessive number of communication rounds can cause significant time delays. Meanwhile, many current lattice-based AKA schemes rely on weak security models like BR, CK, and ROR. These models can only capture partial adversary attacks. To this end, we propose a lower communication rounds lattice-based anonymous authenticated key agreement (LA-AKA) protocol under the seCK model. This protocol aims to achieve lower communication rounds under the robust security model, ensuring heightened security and efficiency within IoT communication systems.

computer science, information systems,telecommunications

Li Zhang,Zhaowei Han,Yuehua Li,Qiuyu Ma,Lele Li

DOI: https://doi.org/10.1088/1555-6611/ad6d52

IF: 1.2

2024-08-24

Laser Physics

Abstract:Quantum key agreement (QKA) is an important cryptographic primitive that plays a pivotal role in private communications. Authenticated QKA plays an important role in QKA. In this paper, we propose an authenticated multiparty QKA scheme based on 4-qubit cluster states entanglement swapping. The scheme is divided into two parts, the first part is the quantum identity authentication stage, and the second part is the QKA stage. In the quantum identity authentication stage, the participants determine that the participant communicating with them is the claimed person through mutual authentication, which can avoid the impersonation attack of the eavesdropper Eve. In the QKA phase, the participants adopt a bidirectional transmission structure with the participation of a semi-trusted third party, and based on the entanglement swapping property of the 4-qubit cluster state, the QKA is finally realized. Detailed security analysis shows that the protocol can resist a variety of internal and external attacks, such as participants attack, entangle-measure attack, and so on.

optics,physics, applied

Jintai Ding,Saed Alsayigh,Jean Lancrenon,R. Saraswathy,Michael Snook

DOI: https://doi.org/10.1007/978-3-319-52153-4_11

2017-01-01

Abstract:Authenticated Key Exchange (AKE) is a cryptographic scheme with the aim to establish a high-entropy and secret session key over a insecure communications network. Password-Authenticated Key Exchange (PAKE) assumes that the parties in play share a simple password, which is cheap and human-memorable and is used to achieve the authentication. PAKEs are practically relevant as these features are extremely appealing in an age where most people access sensitive personal data remotely from more-and-more pervasive hand-held devices. Theoretically, PAKEs allow the secure computation and authentication of a high-entropy piece of data using a low-entropy string as a starting point. In this paper, we apply the recently proposed technique introduced in [19] to construct two lattice-based PAKE protocols enjoying a very simple and elegant design that is an parallel extension of the class of Random Oracle Model (ROM)-based protocols PAK and PPK [13,41], but in the lattice-based setting. The new protocol resembling PAK is three-pass, and provides mutual explicit authentication, while the protocol following the structure of PPK is two-pass, and provides implicit authentication. Our protocols rely on the Ring-Learning-with-Errors (RLWE) assumption, and exploit the additive structure of the underlying ring. They have a comparable level of efficiency to PAK and PPK, which makes them highly attractive. We present a preliminary implementation of our protocols to demonstrate that they are both efficient and practical. We believe they are suitable quantum safe replacements for PAK and PPK.

Yang Yu,Aixin Zhang,Junhua Tang,Haopeng Chen

DOI: https://doi.org/10.1007/978-90-481-3662-9_42

2010-01-01

Abstract:Group communication mechanism provides several participants with a secure and credible communication environment by sharing a confidential group key within group members. Group Diffle-Hellman key exchange protocol (GDR) is an extension of two-party Diffie-Hellman key exchange. Many protocols based on GDH protocol have been proposed, among which AT-GDH protocol is an authenticated group key agreement protocol. AT-GDH2 protocol complements AT-GDH with a dynamic group key updating scheme. This paper proposes an improved dynamic scheme based on AT-GDH after analyzing the security flaws in AT-GDH2 protocol. We name this proposed group key management process as AT-GDH3. Then the security property of AT-GDH3 protocol is analyzed using the strand space and authentication test theory from the aspects of authentication, implicit key authentication, recency, backward security and forward security. The results show that AT-GDH3 protocol can overcome the security flaws in AT-GDH2 protocol, and can guarantee security properties of group key management.

Zhengzhong Jin,Yunlei Zhao

DOI: https://doi.org/10.1007/978-3-030-21568-2_15

2019-01-01

Abstract:In this work, we abstract some key ingredients in previous key establishment and public-key encryption schemes from LWE and its variants. Specifically, we explicitly formalize the building tool, referred to as key consensus (KC) and its asymmetric variant AKC. KC and AKC allow two communicating parties to reach consensus from close values, which plays the fundamental role in lattice-based cryptography. We then prove the upper bounds on parameters for any KC and AKC, which reveal the inherent constraints on the parameters among security, bandwidth, error probability, and consensus range. As a conceptual contribution, this simplifies the design and analysis of these cryptosystems in the future. Guided by the proved upper bounds, we design and analyze both generic and highly practical KC and AKC schemes, which are referred to as OKCN and AKCN respectively for presentation simplicity. We present a generic protocol structure for key establishment from learning with rounding (LWR), which can be instantiated with either KC or AKC. We then provide an analysis breaking the correlation between the rounded deterministic noise and the secret, and design an algorithm to calculate the error probability numerically. When applied to LWEbased key establishment, OKCN and AKCN can result in more practical or well-balanced schemes, compared to existing LWE-based protocols in the literature.

Jikai Teng,Hongyang Ma

DOI: https://doi.org/10.1049/iet-ifs.2019.0177

2019-11-01

IET Information Security

Abstract:In asymmetric group key agreement (ASGKA) protocols, a group of users establish a common encryption key which is publicly accessible and compute pairwise different decryption keys. It is left as an open problem to design an ASGKA protocol with traitor traceability in Eurocrypt 2009. A one-round dynamic authenticated ASGKA protocol with public traitor traceability is proposed in this study. It provides a black-box tracing algorithm. Ind-CPA security with key compromise impersonation resilience (KCIR) and forward secrecy of ASGKA protocols is formally defined. The proposed protocol is proved to be Ind-CPA secure with KCIR and forward secrecy under D k-HDHE assumption. It is also proved that the proposed protocol resists collusion attack. In Setup algorithm and Join algorithm, one communication round is required. In Leave algorithm, no message is required to be transmitted. The proposed protocol adopts O(log N)-way asymmetric multilinear map to make the size of public key and the size of ciphertext both achieve O(logN), where N is the number of potential group members. This is the first ASGKA protocol with public traitor traceability which is more efficient than trivial construction of ASGKA protocols.

computer science, information systems, theory & methods

Chunxiang Xu,Junhui Zhou

IF: 1.019

2009-01-01

Chinese Journal of Electronics

Abstract:Multiparty key agreement (MKA) is a secure and robust approach to establish a group key for secure group oriented applications over non-private underlying networks, and it can be efficiently implemented with ECC (Elliptic curve cryptography). In this paper, we propose a generic two round model for ECC based MKA. All users involved are organized into a ring in this model and distributedly compute a group key by two round message exchanges. Upon this model, we construct a concrete ECC based MKA protocol with scalability and low computational complexity. The protocol is dynamic, that is, it supports key update when user group membership changes to ensure forward secrecy and backward secrecy. The protocol :is proved to be secure under the Decision Diffie-Hellman (DDH) assumption on the elliptic curve. Its security is reduced to the intractable DDH problem on the elliptic curve.

Qingxia Mu,Jiawei Liu,Qingle Wang,Guodong Li,Wenqi Sun

DOI: https://doi.org/10.1007/s10773-024-05564-4

2024-02-24

International Journal of Theoretical Physics

Abstract:In a secure communication network, multiparty quantum key agreement (MQKA) is crucial for providing multiple participants with secret keys in a fair manner. To address the needs of both multiparty secure communication and point-to-point secure communication simultaneously, this paper introduces a novel two-layer multiparty quantum key agreement (TMQKA) protocol with collective detection, based on non-maximum entangled states. The first-layer agreement key is established among multiple participants to enable secure multiparty communication. The second-layer agreement key is established between any two participants to enable point-to-point secure communication. The generation of two-layer keys improves the efficiency of the protocol. In addition, we demonstrate that the proposed TMQKA protocol satisfies the requirements of correctness, security, and fairness. This paper presents a theoretical exploration of TMQKA, contributing to the expanding body of research on multiparty quantum cryptography. Our work represents an attempt to develop secure communication protocols for practical applications.

physics, multidisciplinary

li Zhang,Zhaowei Han,qiuyu Ma,lele Li

DOI: https://doi.org/10.1088/1402-4896/ad514c

2024-05-30

Physica Scripta

Abstract:Quantum key agreement (QKA) is an important branch of quantum cryptography. Particles are easily affected by noise in quantum channel transmission, which provides a cover for eavesdropper Eve to attack maliciously and eventually leads to the failure of protocol. In this paper, based on the properties of four-particle cluster states and their entanglement swapping, two authenticated two-party QKA protocols that can resist collective noise (collective-dephasing noise and collective-rotation noise) by using CZ, CNOT, and Pauli operations are designed, respectively. Besides, both parties can authenticate each other's identities, which makes our protocol more secure. In addition, security analysis shows that these two protocols can resist various attacks from inside and outside, such as participant attacks and entangle-measure attacks.

physics, multidisciplinary

Komal Pursharthi,Dheerendra Mishra

DOI: https://doi.org/10.1016/j.jisa.2024.103754

IF: 4.96

2024-04-08

Journal of Information Security and Applications

Abstract:Mobile device communication enables mobile devices to connect with each other, exchange data, and access services, where security is a crucial aspect to protect sensitive data and privacy. The authenticated key agreement (AKA) protocols ensure authorized and secure communication in such environments. As the security of current AKA protocols relies on the hardness of discrete logarithmic or factorization, it will lead to a greater threat in the post-quantum world. Consequently, Ding et al. created a lattice-based AKA scheme for the quantum world. Although the protocol is simple for mobile devices, it is susceptible to insider attacks. Moreover, the scope of efficiency enhancement of this protocol needs to be explored. Therefore, to provide a secure and efficient solution, a new lattice-based AKA scheme has been proposed in this paper. It is designed with the idea of zero knowledge-based authentication. Further, our protocol resists key mismatch, and signal leakage attacks and supports the reuse of the private key of the server, perfect forward secrecy, and anonymity features. Additionally, we have talked about how our protocol stacks up in terms of computing complexity when compared to competing with other zero knowledge-based authenticated key agreement systems.

computer science, information systems

Chunbo Ma,Jun Ao,Jianhua Li

DOI: https://doi.org/10.1109/npc.2007.36

2007-01-01

Abstract:A password-based dynamic group key agreement protocol from tripartite Diffie-Hellman using pairing on elliptic curve is presented in this paper. In this scheme, due to all users share a common pre-distributed password, the setup of the key agreement is simplified and the performance is improved. In addition, each user establishes a relation between his left and right neighbors respectively in order to implement the fast joining and leaving operations. Under the DDH assumption, proofs are given to show that the proposed key agreement protocol is secure against passive attack.

Zhijian Liao,Qiong Huang,Xinjian Chen

DOI: https://doi.org/10.1186/s42400-022-00122-z

2022-10-03

Abstract:A forward-secure group signature (FSGS) ensures the unforgeability of signatures in the past time period despite signing secret key is leaked in the current time period. As we know, traditional FSGS schemes are mostly relying on number-theoretic assumptions unable to resist quantum attacks. Therefore, we present an efficient lattice-based fully dynamic (i.e. users can flexibly join or quit the group) forward-secure group signature (DFSGS) by combining an improved version of FSGS scheme proposed by Ling. Based on an efficient zero-knowledge argument, we construct argument of knowledge of the committed value and the plaintext that help with privacy protection. Our DFSGS scheme is proved to be anonymous and forward-secure traceable relying on short integer solution and learning with errors assumptions in random oracle model. Moreover, the lengths of group public key and signature of our DFSGS scheme have been improved, and the length of user secret key has no connection with the quantity of group members.

computer science, information systems, interdisciplinary applications, software engineering