An Extension to Bellare and Rogaway (1993) Model: Resetting Compromised Long-Term Keys [chapter]

Colin Boyd, Kim-Kwang Raymond Choo, Anish Mathuria
2006 Lecture Notes in Computer Science  
A security proof in the Bellare-Rogaway model and the random oracle model is provided for a protocol closely based on one originally proposed by Boyd (1996) , which enjoys some remarkable efficiency properties. The model is extended so that it can detect a known weakness of the protocol that cannot be captured in the original model. An alternative protocol, provably secure in the extended model and the random oracle model, offering the same efficiency features as the original protocol is
more » ... d. Moreover, our alternative protocol provides key confirmation and forward secrecy. It also allows session keys to be renewed in subsequent sessions without the server's further involvement even in the event that the long-term key or the earlier session key have been compromised.
doi:10.1007/11780656_31 fatcat:66rtpv7pr5dp7h766j5gql7x7a