Cryptanalysis of Improvement of Password Authenticated Key Exchange Based on RSA for Imbalanced Wireless Networks

Chou-Chen YANG  Ren-Chiun WANG  

Publication
IEICE TRANSACTIONS on Communications   Vol.E88-B   No.11   pp.4370-4372
Publication Date: 2005/11/01
Online ISSN: 
DOI: 10.1093/ietcom/e88-b.11.4370
Print ISSN: 0916-8516
Type of Manuscript: LETTER
Category: Fundamental Theories for Communications
Keyword: 
cryptanalysis,  guessing attack,  key agreement,  password,  wireless networks,  

Full Text: PDF(58.9KB)>>
Buy this Article




Summary: 
In 2002, Zhu et al. proposed a password-based authenticated key exchange protocol based on RSA. Zhu et al. claimed the protocol is efficient for the low-power devices in wireless networks. Unfortunately, Yeh et al. pointed out that Zhu et al.'s protocol was weak against undetectable on-line password guessing attack. Not only that, Zhu et al.'s protocol does not achieve explicit key authentication. At the same time, Yeh et al. proposed an improved method. However, in this paper, we shall point out that Yeh et al.'s improvement is vulnerable to the off-line password guessing attack. At the same time, we shall propose a solution to resist the above attack.