LR-CAKA: A leakage-resilient compatible authenticated key agreement protocol for heterogeneous public-key cryptosystems

IF 3.7 2区计算机科学 Q2 COMPUTER SCIENCE, INFORMATION SYSTEMS

Journal of Information Security and Applications Pub Date : 2025-09-09 DOI:10.1016/j.jisa.2025.104222

Ting-Chieh Ho, Yuh-Min Tseng, Sen-Shan Huang

{"title":"LR-CAKA: A leakage-resilient compatible authenticated key agreement protocol for heterogeneous public-key cryptosystems","authors":"Ting-Chieh Ho, Yuh-Min Tseng, Sen-Shan Huang","doi":"10.1016/j.jisa.2025.104222","DOIUrl":null,"url":null,"abstract":"<div><div>Authenticated key agreement (AKA) is a fundamental cryptographic primitive that enables two remote members in a public-key cryptosystem (PKCS) to mutually authenticate and generate a session key, which is then used to encrypt and decrypt messages between them. In the past, numerous AKA protocols based on various PKCSs have been designed. In response to the growing threat of side-channel attacks, researchers have proposed some leakage-resilient AKA (LR-AKA) protocols that maintain security even when partial private key information is exposed. However, existing LR-AKA protocols are generally designed for homogeneous environments, where both members operate within the same PKCS. To address this limitation, we propose the <em>first</em> leakage-resilient compatible AKA (LR-CAKA) protocol for heterogeneous PKCSs. The LR-CAKA protocol enables secure and efficient authenticated key agreement between two members operating under different PKCSs, specifically between a member in the public-key infrastructure PKCS (PKI-PKCS) and the other in the certificateless PKCS (CL-PKCS). Also, we introduce a PKCS upgrade procedure from the PKI-PKCS to the CL-PKCS. The security of the LR-CAKA protocol is formally proven using a technique based on the generic bilinear group (GBG) model, under the discrete logarithm (DL), computational Diffie–Hellman (CDH) and hash function (HF) assumptions. Finally, performance evaluations and comparative analysis demonstrate that the LR-CAKA protocol offers significant advantages over existing LR-AKA protocols.</div></div>","PeriodicalId":48638,"journal":{"name":"Journal of Information Security and Applications","volume":"94 ","pages":"Article 104222"},"PeriodicalIF":3.7000,"publicationDate":"2025-09-09","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Information Security and Applications","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2214212625002595","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

Authenticated key agreement (AKA) is a fundamental cryptographic primitive that enables two remote members in a public-key cryptosystem (PKCS) to mutually authenticate and generate a session key, which is then used to encrypt and decrypt messages between them. In the past, numerous AKA protocols based on various PKCSs have been designed. In response to the growing threat of side-channel attacks, researchers have proposed some leakage-resilient AKA (LR-AKA) protocols that maintain security even when partial private key information is exposed. However, existing LR-AKA protocols are generally designed for homogeneous environments, where both members operate within the same PKCS. To address this limitation, we propose the first leakage-resilient compatible AKA (LR-CAKA) protocol for heterogeneous PKCSs. The LR-CAKA protocol enables secure and efficient authenticated key agreement between two members operating under different PKCSs, specifically between a member in the public-key infrastructure PKCS (PKI-PKCS) and the other in the certificateless PKCS (CL-PKCS). Also, we introduce a PKCS upgrade procedure from the PKI-PKCS to the CL-PKCS. The security of the LR-CAKA protocol is formally proven using a technique based on the generic bilinear group (GBG) model, under the discrete logarithm (DL), computational Diffie–Hellman (CDH) and hash function (HF) assumptions. Finally, performance evaluations and comparative analysis demonstrate that the LR-CAKA protocol offers significant advantages over existing LR-AKA protocols.

查看原文本刊更多论文

LR-CAKA：用于异构公钥密码系统的防泄漏兼容认证密钥协议

身份验证密钥协议（AKA）是一种基本的加密原语，它使公钥密码系统（PKCS）中的两个远程成员能够相互身份验证并生成会话密钥，然后使用会话密钥对它们之间的消息进行加密和解密。在过去，已经设计了许多基于各种pkcs的AKA协议。为了应对日益增长的侧信道攻击威胁，研究人员提出了一些防泄漏AKA （LR-AKA）协议，即使部分私钥信息暴露也能保持安全性。然而，现有的LR-AKA协议通常是为同构环境设计的，其中两个成员在相同的PKCS中操作。为了解决这一限制，我们提出了异构pkcs的第一个防泄漏兼容AKA （LR-CAKA）协议。LR-CAKA协议使在不同PKCS下运行的两个成员之间，特别是在公钥基础设施PKCS （PKI-PKCS）中的成员与无证书PKCS （CL-PKCS）中的成员之间，能够安全有效地进行身份验证密钥协议。此外，我们还介绍了PKCS从PKI-PKCS到CL-PKCS的升级过程。使用基于一般双线性群（GBG）模型的技术，在离散对数（DL），计算Diffie-Hellman （CDH）和哈希函数（HF）假设下正式证明了LR-CAKA协议的安全性。最后，性能评估和对比分析表明，与现有的LR-AKA协议相比，LR-AKA协议具有显著的优势。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Journal of Information Security and Applications Computer Science-Computer Networks and Communications

CiteScore

10.90

自引率

5.40%

发文量

206

审稿时长

56 days

期刊介绍： Journal of Information Security and Applications (JISA) focuses on the original research and practice-driven applications with relevance to information security and applications. JISA provides a common linkage between a vibrant scientific and research community and industry professionals by offering a clear view on modern problems and challenges in information security, as well as identifying promising scientific and "best-practice" solutions. JISA issues offer a balance between original research work and innovative industrial approaches by internationally renowned information security experts and researchers.