TY - GEN
T1 - Session-key generation using human passwords only
AU - Goldreich, Oded
AU - Lindell, Yehuda
PY - 2001
Y1 - 2001
N2 - We present session-key generation protocols in a model where the legitimate parties share only a human-memorizable password. The security guarantee holds with respect to probabilistic polynomial-time adversaries that control the communication channel (between the parties), and may omit, insert and modify messages at their choice. Loosely speaking, the effect of such an adversary that attacks an execution of our protocol is comparable to an attack in which an adversary is only allowed to make a constant number of queries of the form "is w the password of Party A". We stress that the result holds also in case the passwords are selected at random from a small dictionary so that it is feasible (for the adversary) to scan the entire directory. We note that prior to our result, it was not clear whether or not such protocols were attainable without the use of random oracles or additional setup assumptions.
AB - We present session-key generation protocols in a model where the legitimate parties share only a human-memorizable password. The security guarantee holds with respect to probabilistic polynomial-time adversaries that control the communication channel (between the parties), and may omit, insert and modify messages at their choice. Loosely speaking, the effect of such an adversary that attacks an execution of our protocol is comparable to an attack in which an adversary is only allowed to make a constant number of queries of the form "is w the password of Party A". We stress that the result holds also in case the passwords are selected at random from a small dictionary so that it is feasible (for the adversary) to scan the entire directory. We note that prior to our result, it was not clear whether or not such protocols were attainable without the use of random oracles or additional setup assumptions.
UR - https://www.scopus.com/pages/publications/84880888233
U2 - 10.1007/3-540-44647-8_24
DO - 10.1007/3-540-44647-8_24
M3 - ???researchoutput.researchoutputtypes.contributiontobookanthology.conference???
AN - SCOPUS:84880888233
SN - 3540424563
SN - 9783540424567
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 408
EP - 432
BT - Advances in Cryptology, CRYPTO 2001 - 21st Annual International Cryptology Conference, Proceedings
A2 - Kilian, Joe
PB - Springer Verlag
T2 - 21st Annual International Cryptology Conference, CRYPTO 2001
Y2 - 19 August 2001 through 23 August 2001
ER -