Security model and analysis of fhmqv, Revisited

Shengli Liu, Kouichi Sakurai, Jian Weng, Fangguo Zhang, Yunlei Zhao, Yunlei Zhao

Research output: Chapter in Book/Report/Conference proceedingConference contribution

3 Citations (Scopus)

Abstract

HMQV is one of the most efficient (provably secure) authenticated key-exchange protocols based on public-key cryptography, and is widely standardized. In spite of its seemingly conceptual simplicity, the HMQV protocol was actually very delicately designed. The provable security of HMQV is conducted in the Canetti-Krawczyk framework (CK-framework, in short), which is quite complicated and lengthy with many subtleties actually buried there. However, lacking a full recognition of the precise yet subtle interplay between HMQV protocol structure and provable security can cause misunderstanding of the HMQV design, and can cause potential flawed design and analysis of HMQV protocol variants. In this work, we explicitly make clear the interplay between HMQV protocol structure and provable security, showing the delicate design of HMQV. We then re-examine the security model and analysis of a recently proposed HMQV protocol variant, specifically, the FHMQV protocol proposed by Sarr et al. in [25]. We clarify the relationship between the traditional CK-framework and the CK-FHMQV security model proposed for FHMQV, and show that CK-HMQV and CK-FHMQV are incomparable. Finally, we make a careful investigation of the CDH-based analysis of FHMQV in the CK-FHMQV model, which was considered to be one of the salient advantages of FHMQV. We identify that the CDH-based security analysis of FHMQV is actually flawed. The flaws identified in the security proof of FHMQV just stem from lacking a full realization of the precise yet subtle interplay, as clarified in this work, between HMQV protocol structure and provable security.

Original languageEnglish
Title of host publicationInformation Security and Cryptology - 9th International Conference, Inscrypt 2013, Revised Selected Papers
EditorsMoti Yung, Dongdai Lin, Shouhuai Xu, Moti Yung
PublisherSpringer Verlag
Pages255-269
Number of pages15
ISBN (Electronic)9783319120867
DOIs
Publication statusPublished - Jan 1 2014
Event9th China International Conference on Information Security and Cryptology, Inscrypt 2013 - Guangzhou, China
Duration: Nov 27 2013Nov 30 2013

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume8567
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Other

Other9th China International Conference on Information Security and Cryptology, Inscrypt 2013
CountryChina
CityGuangzhou
Period11/27/1311/30/13

All Science Journal Classification (ASJC) codes

  • Theoretical Computer Science
  • Computer Science(all)

Fingerprint Dive into the research topics of 'Security model and analysis of fhmqv, Revisited'. Together they form a unique fingerprint.

  • Cite this

    Liu, S., Sakurai, K., Weng, J., Zhang, F., Zhao, Y., & Zhao, Y. (2014). Security model and analysis of fhmqv, Revisited. In M. Yung, D. Lin, S. Xu, & M. Yung (Eds.), Information Security and Cryptology - 9th International Conference, Inscrypt 2013, Revised Selected Papers (pp. 255-269). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 8567). Springer Verlag. https://doi.org/10.1007/978-3-319-12087-4_16