Skip to content

Generic Forward-Secure Key Agreement Without Signatures

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Original languageEnglish
Title of host publicationInformation Security - ISC 2017
Subtitle of host publication20th International Conference, ISC 2017, Ho Chi Minh City, Vietnam, November 22-24 2017. Proceedings
Publisher or commissioning bodySpringer, Cham
Pages114-133
Number of pages20
ISBN (Electronic)9783319696591
ISBN (Print)9783319696584
DOIs
DateAccepted/In press - 26 Aug 2017
DatePublished (current) - 20 Sep 2017

Publication series

NameLecture Notes in Computer Science
Volume10599
ISSN (Print)0302-9743

Abstract

We present a generic, yet simple and efficient transformation to obtain a forward secure authenticated key exchange protocol from a two-move passively secure unauthenticated key agreement scheme (such as standard Diffie--Hellman or Frodo or NewHope). Our construction requires only an IND-CCA public key encryption scheme (such as RSA-OAEP or a method based on ring-LWE), and a message authentication code. Particularly relevant in the context of the state-of-the-art of postquantum secu re primitives, we avoid the use of digital signature schemes: practical candidate post-quantum signature schemes are less accepted (and require more bandwidth) than candidate post-quantum public key encryption schemes. An additional feature of our proposal is that it helps avoid the bad practice of using long term keys certified for encryption to produce digital signatures. We prove the security of our transformation in the random oracle model.

    Research areas

  • cryptographic protocols

Documents

Links

DOI

View research connections

Related faculties, schools or groups