Security Investigate

Client-to-client Password-Based Authenticated Key Establishment in a Cross-Realm Setting

Download now Free registration required

Executive Summary

The area of password-based authenticated key establishment protocols has been the subject of a vast amount of work in the last few years due to its practical aspects. Despite the attention given to it, most Password-Authenticated Key Establishment (PAKE) schemes in the literature consider authentication between a client and a sever. Although some of them are extended to a three-party PAKE protocol, in which a trusted server exists to mediate between two clients to allow mutual authentication, they are less considered in a cross-realm setting like in kerberos system.

  • Format: PDF
  • Size: 394.49 KB