Skip to Main Content

IEEE.org| IEEE Xplore Digital Library| IEEE Standards| IEEE Spectrum| More Sites

Cart (Loading....) | Create Account | Sign In

Author Search^beta | Advanced Search | Preferences | | More Search Options

Browse Journals & Magazines > Communications Letters, IEEE ...> Volume:10 Issue:9

Security analysis and improvement of a gateway-oriented password-based authenticated key exchange protocol

Full Text Sign-In or Purchase

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Username

Password

Purchase PDF
Other Formats

Formats	Non-Member	Member
PDF	$31	$13

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

Already Purchased? View Article
Subscription Options Learn More

3 Author(s)

Jin Wook Byun ; Graduate Sch. of Inf. Security, Korea Univ., Seoul ; Dong Hoon Lee ; Jong In Lim

Recently, Abdalla et al. proposed a gateway-oriented password-based authenticated key exchange (GPAKE) protocol among a client, a gateway, and an authentication server, where a password is only shared between the client and the authentication server. The security goal of GPAKE is to securely establish a session key between the client and the gateway by the help of the authentication server without revealing any information of the password to the gateway. In the letter, we show that a malicious gateway of GPAKE is still able to gain information of password by performing an undetectable on-line password guessing attack. We also present a countermeasure against the attack

Published in:
Communications Letters, IEEE (Volume:10 , Issue: 9 )

Date of Publication: Sept. 2006

Page(s):: 683 - 685
ISSN :: 1089-7798
INSPEC Accession Number:: 9101759
Digital Object Identifier :: 10.1109/LCOMM.2006.1714545
Product Type:: Journals & Magazines

Date of Current Version :: 23 October 2006
Issue Date :: Sept. 2006
Sponsored by :: IEEE Communications Society

Author(s)

Jin Wook Byun
Graduate Sch. of Inf. Security, Korea Univ., Seoul
Dong Hoon Lee ; Jong In Lim

INSPEC: CONTROLLED INDEXING

client-server systems

cryptography

message authentication

protocols

telecommunication security

INSPEC: NON CONTROLLED INDEXING

GPAKE

attack. countermeasure

gateway-oriented password-based authenticated key exchange protocol

on-line password guessing attack

security analysis

IEEE TERMS

Cryptography

Dictionaries

Information security

Message authentication

Natural languages

Performance gain

Protocols

Referenced Items are not available for this document.

No versions found for this document.

Standards Dictionary Terms are available to subscribers only.

| Create Account

IEEE Account

Purchase Details

Profile Information

Need Help?

US & Canada: +1 800 678 4333
Worldwide: +1 732 981 0060
Contact & Support

IEEE Advancing Technology for Humanity

About IEEE Xplore | Contact | Help | Terms of Use | Nondiscrimination Policy | Site Map | Privacy & Opting Out of Cookies

A not-for-profit organization, IEEE is the world's largest professional association for the advancement of technology.
© Copyright 2013 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.