Analysis and Improvement of a Strongly Secure Certificateless Key Exchange Protocol Without Pairing

Recently, Yang and Tan proposed a certificate less key exchange protocol without pairing, and claimed their scheme satisfies forward secrecy, which means no adversary could derive an already-established session key unless the full user secret keys (including a private key and an ephemeral secret key) of both communication parties are compromised. However, in this paper, the authors point out their protocol is actually not secure as claimed by presenting an attack launched by an adversary who has learned the private key of one party and the ephemeral secret key of the other, but not the full user secret keys of both parties.

Provided by: Beijing University of Posts and Telecommunications Topic: Security Date Added: Dec 2011 Format: PDF

Find By Topic