The password-based authenticated key exchange is a technology that allows both parties to perform mutual authentication and generate a shared session key. They through the shared password as the basis for authentication and generate a session key that is only known by both parties. At last, they can use this key to establish a secure channel to transmit secret message. We propose a password-based authenticated key exchange from lattices for Client-Server model. The client only need to remember the password rather than the private key, and the server except keep the password and its own public/private key pair. Both parties execute the mutual authentication via the shared password and accomplish the key exchange within two steps. The security of our protocol is based on LWE problem for lattices, so it is secure even an attacker uses a quantum computer.
Client/Server model, Key exchange, Lattice cryptosystem, LWE, Mutual authentication.
Authors and contacts:
Jen-Chien Hsu, Department of Computer Science, National Chengchi University, 64, Sec. 2, Zhi-nan Rd., Taipei 11605, China,email@example.com
Yi-Siou Jheng, Department of Computer Science, National Chengchi University, 64, Sec. 2, Zhi-nan Rd., Taipei 11605, China
Sk Md Mizanur Rahman, Information and Communication Engineering Technology (ICET), School of Engineering Technology and Applied Science (SETAS), Centennial College, Toronto, ON M1G 3T8, Canada
Raylin Tso*, Department of Computer Science, National Chengchi University, 64, Sec. 2, Zhi-nan Rd., Taipei 11605, China,firstname.lastname@example.org
Jen-Chien Hsu, Yi-Siou Jheng, Sk Md Mizanur Rahman, and Raylin Tso, “Password-based authenticated key exchange from lattices for client server model”, Journal of Computer Security and Data Forensics, Vol. 1, No. 1, pp. 1~17, March 2021.