Anonymous Gateway-Oriented Password-Based Authenticated Key Exchange Based on RSA
A Gateway-oriented Password-based Authenticated Key Exchange (GPAKE) is a three-party protocol, which allows a client and a gateway to establish a common session key with the help of an authentication server. To date, most of the published protocols for GPAKE have been based on Diffie-Hellman key exchange. In this paper, the authors present the first GPAKE protocol based on RSA, and then prove its security in the random oracle model under the RSA assumption. Furthermore, the authors protocol can resist both e-residue and undetectable on-line dictionary attacks. Finally, they investigate whether or not a GPAKE protocol can achieve both client anonymity and resistance against undetectable on-line dictionary attacks by malicious gateway. They provide an affirmative answer by adding client anonymity with respect to the server.