No Access

Nonce-Based Key Agreement Protocol Against Bad Randomness

Burong Kang

School of Computer Science and Software Engineering, East China Normal University, Shanghai 200062, P. R. China

E-mail Address: BR_Kang@163.com

Search for more papers by this author

Xinyu Meng

School of Computer Science and Software Engineering, East China Normal University, Shanghai 200062, P. R. China

E-mail Address: 52174501013@stu.ecnu.edu.cn

Search for more papers by this author

Lei Zhang

School of Computer Science and Software Engineering, East China Normal University, Shanghai 200062, P. R. China

E-mail Address: leizhang@sei.ecnu.edu.cn

Corresponding author.

Search for more papers by this author

, and

Yinxia Sun

School of Computer Science and Technology, Nanjing Normal University, Nanjing 210097, P. R. China

E-mail Address: bela_suno@163.com

Search for more papers by this author

https://doi.org/10.1142/S0129054119400161Cited by:2 (Source: Crossref)

This article is part of the issue:

Special Issue — Cryptography and Provable Security

Abstract

Most of the existing cryptographic schemes, e.g., key agreement protocol, call for good randomness. Otherwise, the security of these cryptographic schemes cannot be fully guaranteed. Nonce-based cryptosystem is recently introduced to improve the security of public key encryption and digital signature schemes by ensuring security when randomness fails. In this paper, we first investigate the security of key agreement protocols when randomness fails. Then we define the security model for nonce-based key agreement protocols and propose a nonce-based key agreement protocol that protects against bad randomness. The new protocol is proven to be secure in our proposed security model.

Communicated by Yong Yu, Guomin Yang and Huaxiong Wang

Keywords:

References

1. E. B. Barker and J. M. Kelsey, Recommendation for random number generation using deterministic random bit generators (revised), US Department of Commerce, Technology Administration, National Institute of Standards and Technology, Computer Security Division, Information Technology Laboratory (2007). Google Scholar
2. M. Bellare and P. Rogaway, The security of triple encryption and a framework for code-based game-playing proofs, Ann. Int. Conf. Theory and Applications of Cryptographic Techniques (2006), pp. 409–426. Google Scholar
3. M. Bellare and B. Tackmann, Nonce-based cryptography: Retaining security when randomness fails, Ann. Int. Conf. Theory and Applications of Cryptographic Techniques (2016), pp. 729–757. Google Scholar
4. L. Bello, DSA-1571-1 openssl — Predictable random number generator, Debian Security Advisory (2008). Google Scholar
5. A. Boldyreva, C. Patton and T. Shrimpton, Hedging public-key encryption in the real world, Ann. Int. Cryptology Conf. (2017), pp. 462–494. Google Scholar
6. C. Buttner and S. A. Huss, A novel anonymous authenticated key agreement protocol for vehicular ad hoc networks, Int. Conf. Information Systems Security and Privacy (IEEE, 2016), pp. 259–269. Google Scholar
7. S. Checkoway et al., On the practical exploitability of Dual EC in TLS implementations, USENIX Security Symposium (2014), pp. 319–335. Google Scholar
8. W. Diffie and M. E. Hellman, New directions in cryptography, IEEE Trans. Inform. Th. 22(6) (1976) 644–654. Web of Science, Google Scholar
9. Y. Dodis et al., A formal treatment of backdoored pseudorandom generators, Ann. Int. Conf. Theory and Applications of Cryptographic Techniques (2015), pp. 101–126. Google Scholar
10. X. Du et al., A routing-driven elliptic curve cryptography based key management scheme for heterogeneous sensor networks, IEEE Trans. Wireless Commun. 8(3) (2009) 1223–1229. Web of Science, Google Scholar
11. X. Du et al., An effective key management scheme for heterogeneous sensor networks, Ad Hoc Netw. 5(1) (2007) 24–34. Web of Science, Google Scholar
12. A. Everspaugh et al., Not-so-random numbers in virtualized Linux and the Whirlwind RNG, Security and Privacy (SP), 2014 IEEE Symposium on. (IEEE, 2014), pp. 559–574. Google Scholar
13. Z. Huang et al., Hedged nonce-based public-key encryption: Adaptive security under randomness failures, IACR Int. Workshop on Public Key Cryptography (2018), pp. 253–279. Google Scholar
14. Y. S. Jheng et al., Password-Based authenticated key exchange from lattices for Client/Server model, Adv. Comput. Sci. Ubiquitous Computing (2017), pp. 315–319. Google Scholar
15. C. Kudla and K. G. Paterson, Modular security proofs for key agreement protocols, Int. Conf. Theory and Application of Cryptology and Information Security (2005), pp. 549–565. Google Scholar
16. A. Kumar and S. Tripathi, Anonymous ID-based group key agreement protocol without pairing, Int. J. Netw. Sec. 18(2) (2016) 263–273. Google Scholar
17. T. Li et al., Differentially private naive bayes learning over multiple data sources, Inform. Sci. 444 (2018) 89–104. Web of Science, Google Scholar
18. Y. Li et al., Fuzzy identity-based data integrity auditing for reliable cloud storage systems, IEEE Trans. Dependable and Secure Computing 16(1) (2019) 72–83. Web of Science, Google Scholar
19. J. Li and L. Zhang, Sender dynamic, non-repudiable, privacy-preserving and strong secure group communication protocol, Inform. Sci. (2017) 187–202. Web of Science, Google Scholar
20. J. Liu et al., Secure intelligent traffic light control using fog computing, Future Gen. Comput. Syst. 78 (2018) 817–824. Web of Science, Google Scholar
21. T. Okamoto, R. Tso and E. Okamoto, One-way and two-party authenticated ID-based key agreement protocols using pairing, Int. Conf. Modeling Decisions for Artificial Intelligence, Vol. 3558 (2005), pp. 122–133. Google Scholar
22. T. Ristenpart and S. Yilek, When good randomness goes bad: Virtual machine reset vulnerabilities and hedging deployed cryptography, NDSS (2010). Google Scholar
23. P. Rogaway, Authenticated-encryption with associated-data, Proc. 9th ACM Conf. Computer and Communications Security (2002), pp. 98–107. Google Scholar
24. P. Rogaway, Nonce-based symmetric encryption, Int. Workshop on Fast Software Encryption (2004), pp. 348–358. Google Scholar
25. P. Rogaway and T. Shrimpton, A provable-security treatment of the key-wrap problem, Ann. Int. Conf. Theory and Applications of Cryptographic Techniques (2006), pp. 373–390. Google Scholar
26. R. Sakai, K. Ohgishi and M. Kasahara, Cryptosystems based on pairing, Symp. Cryptography and Information Security (2000), pp. 26–28. Google Scholar
27. D. Shurmow and N. Ferguson, On the possibility of a back door in the NIST SP800-90 dual EC PRNG, CRYPTO Rump Session (2007), Microsoft. Disponible sur: http://rump2007.cr.yp.to/15-shumow.pdf. Google Scholar
28. Y. Xiao et al., A survey of key management schemes in wireless sensor networks, Comput. Commun. 30(11–12) (2007) 2314–2341. Web of Science, Google Scholar
29. Y. Yu et al., Attribute-based cloud data integrity auditing for secure outsourced storage, IEEE Trans. Emerging Topics in Computing (2017). https://doi.org/10.1109/TETC.2017.2759329 Web of Science, Google Scholar
30. Y. Yu et al., Assured data deletion with fine-grained access control for fog-based industrial applications, IEEE Trans. Indust. Inform. 14(10) (2018) 4538–4547. Web of Science, Google Scholar
31. L. Zhang, OTIBAAGKA: A new security tool for cryptographic Mix-Zone establishment in vehicular ad hoc networks, IEEE Trans. Inform. Forensics and Security 12(12) (2017) 2998–3010. Web of Science, Google Scholar
32. L. Zhang, Certificateless one-pass and two-party authenticated key agreement protocol and its extensions, Inform. Sci. 293 (2015) 182–195. Web of Science, Google Scholar
33. L. Zhang et al., Privacy-preserving vehicular communication authentication with hierarchical aggregation and fast response, IEEE Trans. Comput. 65(8) (2016) 2562–2574. Web of Science, Google Scholar
34. L. Zhang et al., Privacy-preserving cloud establishment and data dissemination scheme for vehicular cloud, IEEE Trans. Dependable and Secure Computing, doi: 10.1109/TDSC.2018.2797190. Google Scholar
35. L. Zhang et al., Distributed aggregate privacy-preserving authentication in VANETs, IEEE Trans. Intell. Transport. Syst. 18(3) (2017) 516–526. Web of Science, Google Scholar
36. L. Zhang et al., Round-efficient and sender-unrestricted dynamic group key agreement protocol for secure group communications, IEEE Trans. Inform. Forensics and Security 10(11) (2015) 2352–2364. Web of Science, Google Scholar
37. L. Zhang et al., A scalable robust authentication protocol for secure vehicular communications, IEEE Trans. Vehicular Technol. 59(4) (2010) 1606–1617. Web of Science, Google Scholar
38. H. Zhang, Q. Zhang and X. Du, Toward vehicle-assisted cloud computing for smartphones, IEEE Trans. Vehicular Technol. 64(12) (2015) 5610–5618. Web of Science, Google Scholar
39. Y. Zhou and Y. Fang, Scalable and deterministic key agreement for large scale networks, IEEE Trans. Wireless Commun. 6(12) (2007) 4366–4373. Web of Science, Google Scholar
40. L. Zhang et al., Simulatable certificateless two-party authenticated key agreement protocol, Inform. Sci. 180(6) (2010) 1020–1030. Web of Science, Google Scholar