Visible to the public Password-Authenticated Group Key Exchange: A Cross-Layer Design

TitlePassword-Authenticated Group Key Exchange: A Cross-Layer Design
Publication TypeJournal Article
Year of Publication2016
AuthorsZhang, Yuexin, Xiang, Yang, Huang, Xinyi
JournalACM Trans. Internet Technol.
Date Publisheddec
Keywordscomposability, Cross Layer Security, group key exchange, higher layers, password, pubcrawl, Resiliency, security, the physical layer
AbstractTwo-party password-authenticated key exchange (2PAKE) protocols provide a natural mechanism for secret key establishment in distributed applications, and they have been extensively studied in past decades. However, only a few efforts have been made so far to design password-authenticated group key exchange (GPAKE) protocols. In a 2PAKE or GPAKE protocol, it is assumed that short passwords are preshared among users. This assumption, however, would be impractical in certain applications. Motivated by this observation, this article presents a GPAKE protocol without the password sharing assumption. To obtain the passwords, wireless devices, such as smart phones, tablets, and laptops, are used to extract short secrets at the physical layer. Using the extracted secrets, users in our protocol can establish a group key at higher layers with light computation consumptions. Thus, our GPAKE protocol is a cross-layer design. Additionally, our protocol is a compiler, that is, our protocol can transform any provably secure 2PAKE protocol into a GPAKE protocol with only one more round of communications. Besides, the proposed protocol is proved secure in the standard model.
Citation Keyzhang_password-authenticated_2016