E. K. Alekseev, L. R. Akhmetzyanova, I. B. Oshkin, S. V. Smyshlyaev, “A review of the password authenticated key exchange protocols vulnerabilities and principles of the <i>SESPAKE</i> protocol construction”, Mat. Vopr. Kriptogr., 2016, Volume 7, Issue 4,Pages <nobr>7

This article is cited in 4 papers

A review of the password authenticated key exchange protocols vulnerabilities and principles of the SESPAKE protocol construction

E. K. Alekseev, L. R. Akhmetzyanova, I. B. Oshkin, S. V. Smyshlyaev

CryptoPro LLC, Moscow

Abstract: We consider a family of protocols permitting the parties sharing a weak key (a password) to generate a strong common key using the unprotected channel. It is supposed that to check the password correctness the adversary should interact with legitimate participants. A review of the known vulnerabilities of the protocols of the family considered is given. This review is used to explain the main principles of the SESPAKE protocol construction.

Key words: protocols, SESPAKE, PAKE, key exchange, authentication, password.

UDC: 519.719.2

Received 23.VI.2016

DOI: 10.4213/mvk201