TY - GEN
T1 - Quantum Safe Computation-Friendly Identity-Binding Password Authenticated Key Exchange
AU - Jana, Pratima
AU - Dutta, Ratna
AU - Zuo, Cong
N1 - Publisher Copyright:
© The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd. 2025.
PY - 2025
Y1 - 2025
N2 - Password Authenticated Key Exchange (PAKE) protocols are of paramount importance in applications like the Internet of Things (IoT) and wireless networking ensures the security of communication systems by enabling two parties to establish a shared secret key using only a low-entropy password. Recent advances in PAKE protocols have aimed to provide stronger security assurances including resilience against offline dictionary attacks, replay attacks, compromise attacks for both parties (client and server), pre-computation attacks, mutual authentication and perfect forward secrecy. Despite several improvements, challenges persist in both security and efficiency for existing PAKE proposals. To address these challenges, Cremers et al. (Crypto ’22) introduced the concept of identity-binding PAKE. None of the existing identity-binding PAKE is post-quantum secure. In response to these challenges, our contribution aims to bridge the gap in practical and secure post-quantum identity-binding PAKE. Our work proposes a post-quantum secure identity-binding PAKE protocols, LPAKE with enhanced security. Our lattice-based protocol LPAKE is secure based on the Module Pairing with Errors (MPWE) assumption and the Decision Module Learning with Errors (DMLWE) assumption. We present comprehensive security proof in a conventional game-based indistinguishability security model. Through rigorous performance evaluations, the paper demonstrates that the proposed PAKE scheme exhibits notable advantages in terms of total computation cost with enhanced security properties compared to existing identity-binding PAKE protocols.
AB - Password Authenticated Key Exchange (PAKE) protocols are of paramount importance in applications like the Internet of Things (IoT) and wireless networking ensures the security of communication systems by enabling two parties to establish a shared secret key using only a low-entropy password. Recent advances in PAKE protocols have aimed to provide stronger security assurances including resilience against offline dictionary attacks, replay attacks, compromise attacks for both parties (client and server), pre-computation attacks, mutual authentication and perfect forward secrecy. Despite several improvements, challenges persist in both security and efficiency for existing PAKE proposals. To address these challenges, Cremers et al. (Crypto ’22) introduced the concept of identity-binding PAKE. None of the existing identity-binding PAKE is post-quantum secure. In response to these challenges, our contribution aims to bridge the gap in practical and secure post-quantum identity-binding PAKE. Our work proposes a post-quantum secure identity-binding PAKE protocols, LPAKE with enhanced security. Our lattice-based protocol LPAKE is secure based on the Module Pairing with Errors (MPWE) assumption and the Decision Module Learning with Errors (DMLWE) assumption. We present comprehensive security proof in a conventional game-based indistinguishability security model. Through rigorous performance evaluations, the paper demonstrates that the proposed PAKE scheme exhibits notable advantages in terms of total computation cost with enhanced security properties compared to existing identity-binding PAKE protocols.
KW - Authenticated Key Exchange
KW - Internet of Things
KW - Lattice-based Cryptography
KW - Post-quantum Cryptography
UR - http://www.scopus.com/pages/publications/85219172943
U2 - 10.1007/978-981-96-0957-4_19
DO - 10.1007/978-981-96-0957-4_19
M3 - Conference contribution
AN - SCOPUS:85219172943
SN - 9789819609567
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 298
EP - 309
BT - Provable and Practical Security - 18th International Conference, ProvSec 2024, Proceedings
A2 - Liu, Joseph K.
A2 - Chen, Liqun
A2 - Sun, Shi-Feng
A2 - Liu, Xiaoning
PB - Springer Science and Business Media Deutschland GmbH
T2 - 18th International Conference on Provable and Practical Security, ProvSec 2024
Y2 - 25 September 2024 through 27 September 2024
ER -