On forward secrecy in one-round key exchange

A. Menezes; B. Ustaoglu; B. Ustaoglu; B.A. LaMacchia; C. Boyd; E. Okamoto; E. Okamoto; H. Krawczyk; I.R. Jeong; M. Bellare; M. Bellare; R. Canetti; R. Canetti; R. Gennaro; S. Chatterjee; S.S.M. Chow; T. Okamoto; W. Diffie; W. Diffie

research

On forward secrecy in one-round key exchange

Authors: A. Menezes
B. Ustaoglu
B. Ustaoglu
B.A. LaMacchia
C. Boyd
E. Okamoto
E. Okamoto
H. Krawczyk
I.R. Jeong
M. Bellare
M. Bellare
R. Canetti
R. Canetti
R. Gennaro
S. Chatterjee
S.S.M. Chow
T. Okamoto
W. Diffie
W. Diffie
Publication date: 1 January 2011
Publisher: 'Springer Science and Business Media LLC'
Doi

Abstract

Most one-round key exchange protocols provide only weak forward secrecy at best. Furthermore, one-round protocols with strong forward secrecy often break badly when faced with an adversary who can obtain ephemeral keys. We provide a characterisation of how strong forward secrecy can be achieved in one-round key exchange. Moreover, we show that protocols exist which provide strong forward secrecy and remain secure with weak forward secrecy even when the adversary is allowed to obtain ephemeral keys. We provide a compiler to achieve this for any existing secure protocol with weak forward secrecy

Similar works

Full text

Open in the Core reader

Download PDF

Available Versions

Name not available

oai:eprints.qut.edu.au:47301

Last time updated on 08/02/2018

Crossref

Last time updated on 22/07/2021

Queensland University of Technology ePrints Archive

oai:eprints.qut.edu.au:47301

Last time updated on 02/07/2013