Credential authenticated identification and key exchange

Jan Camenisch; Nathalie Casati; Thomas Gross; Victor Shoup

doi:10.1007/978-3-642-14623-7_14

Credential authenticated identification and key exchange

Jan Camenisch, Nathalie Casati, Thomas Gross, Victor Shoup

Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

This paper initiates a study of two-party identification and key-exchange protocols in which users authenticate themselves by proving possession of credentials satisfying arbitrary policies, instead of using the more traditional mechanism of a public-key infrastructure. Definitions in the universal composability framework are given, and practical protocols satisfying these definitions, for policies of practical interest, are presented. All protocols are analyzed in the common reference string model, assuming adaptive corruptions with erasures, and no random oracles. The new security notion includes password-authenticated key exchange as a special case, and new, practical protocols for this problem are presented as well, including the first such protocol that provides resilience against server compromise (without random oracles).

Original language	English (US)
Title of host publication	Advances in Cryptology - CRYPTO 2010 - 30th Annual Cryptology Conference, Proceedings
Pages	255-276
Number of pages	22
DOIs	https://doi.org/10.1007/978-3-642-14623-7_14
State	Published - 2010
Event	30th Annual International Cryptology Conference, CRYPTO 2010 - Santa Barbara, CA, United States Duration: Aug 15 2010 → Aug 19 2010

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	6223 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Other

Other	30th Annual International Cryptology Conference, CRYPTO 2010
Country/Territory	United States
City	Santa Barbara, CA
Period	8/15/10 → 8/19/10

ASJC Scopus subject areas

Theoretical Computer Science
General Computer Science

Access to Document

10.1007/978-3-642-14623-7_14

Cite this

Camenisch, J., Casati, N., Gross, T., & Shoup, V. (2010). Credential authenticated identification and key exchange. In Advances in Cryptology - CRYPTO 2010 - 30th Annual Cryptology Conference, Proceedings (pp. 255-276). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 6223 LNCS). https://doi.org/10.1007/978-3-642-14623-7_14

Credential authenticated identification and key exchange. / Camenisch, Jan; Casati, Nathalie; Gross, Thomas et al.
Advances in Cryptology - CRYPTO 2010 - 30th Annual Cryptology Conference, Proceedings. 2010. p. 255-276 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 6223 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Camenisch, J, Casati, N, Gross, T & Shoup, V 2010, Credential authenticated identification and key exchange. in Advances in Cryptology - CRYPTO 2010 - 30th Annual Cryptology Conference, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 6223 LNCS, pp. 255-276, 30th Annual International Cryptology Conference, CRYPTO 2010, Santa Barbara, CA, United States, 8/15/10. https://doi.org/10.1007/978-3-642-14623-7_14

Camenisch J, Casati N, Gross T, Shoup V. Credential authenticated identification and key exchange. In Advances in Cryptology - CRYPTO 2010 - 30th Annual Cryptology Conference, Proceedings. 2010. p. 255-276. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-642-14623-7_14

@inproceedings{e8f52bae3d3e4b3fbddfc527f8316531,

title = "Credential authenticated identification and key exchange",

abstract = "This paper initiates a study of two-party identification and key-exchange protocols in which users authenticate themselves by proving possession of credentials satisfying arbitrary policies, instead of using the more traditional mechanism of a public-key infrastructure. Definitions in the universal composability framework are given, and practical protocols satisfying these definitions, for policies of practical interest, are presented. All protocols are analyzed in the common reference string model, assuming adaptive corruptions with erasures, and no random oracles. The new security notion includes password-authenticated key exchange as a special case, and new, practical protocols for this problem are presented as well, including the first such protocol that provides resilience against server compromise (without random oracles).",

author = "Jan Camenisch and Nathalie Casati and Thomas Gross and Victor Shoup",

year = "2010",

doi = "10.1007/978-3-642-14623-7_14",

language = "English (US)",

isbn = "3642146228",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "255--276",

booktitle = "Advances in Cryptology - CRYPTO 2010 - 30th Annual Cryptology Conference, Proceedings",

note = "30th Annual International Cryptology Conference, CRYPTO 2010 ; Conference date: 15-08-2010 Through 19-08-2010",

}

TY - GEN

T1 - Credential authenticated identification and key exchange

AU - Camenisch, Jan

AU - Casati, Nathalie

AU - Gross, Thomas

AU - Shoup, Victor

PY - 2010

Y1 - 2010

N2 - This paper initiates a study of two-party identification and key-exchange protocols in which users authenticate themselves by proving possession of credentials satisfying arbitrary policies, instead of using the more traditional mechanism of a public-key infrastructure. Definitions in the universal composability framework are given, and practical protocols satisfying these definitions, for policies of practical interest, are presented. All protocols are analyzed in the common reference string model, assuming adaptive corruptions with erasures, and no random oracles. The new security notion includes password-authenticated key exchange as a special case, and new, practical protocols for this problem are presented as well, including the first such protocol that provides resilience against server compromise (without random oracles).

AB - This paper initiates a study of two-party identification and key-exchange protocols in which users authenticate themselves by proving possession of credentials satisfying arbitrary policies, instead of using the more traditional mechanism of a public-key infrastructure. Definitions in the universal composability framework are given, and practical protocols satisfying these definitions, for policies of practical interest, are presented. All protocols are analyzed in the common reference string model, assuming adaptive corruptions with erasures, and no random oracles. The new security notion includes password-authenticated key exchange as a special case, and new, practical protocols for this problem are presented as well, including the first such protocol that provides resilience against server compromise (without random oracles).

UR - http://www.scopus.com/inward/record.url?scp=77956987281&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=77956987281&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-14623-7_14

DO - 10.1007/978-3-642-14623-7_14

M3 - Conference contribution

AN - SCOPUS:77956987281

SN - 3642146228

SN - 9783642146220

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 255

EP - 276

BT - Advances in Cryptology - CRYPTO 2010 - 30th Annual Cryptology Conference, Proceedings

T2 - 30th Annual International Cryptology Conference, CRYPTO 2010

Y2 - 15 August 2010 through 19 August 2010

ER -

Credential authenticated identification and key exchange

Abstract

Publication series

Other

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this