Comments on “An improved secure and efficient password and chaos-based two-party key agreement protocol”

Chien Ming Chen; Weicheng Fang; King Hang Wang; Tsu Yang Wu

doi:10.1007/s11071-016-3171-9

Comments on “An improved secure and efficient password and chaos-based two-party key agreement protocol”

Chien Ming Chen
, Weicheng Fang
, King Hang Wang
, Tsu Yang Wu^*

^*Corresponding author for this work

Department of Computer Science

Research output: Contribution to journal › Journal article › peer-review

34 Citations (Scopus)

Abstract

Recently, Liu and Xue proposed a secure two-party password-based authenticated key exchange protocol by utilizing the semi-group property of the Chebyshev chaotic maps. We exploit the vulnerability of the protocol in this paper by illustrating an off-line password guessing attack. In this attack, the password of a honest user will be recover by an attacker without being noticed by the server or the victim. To overcome such problem, we propose a simple and compatible fix.

Original language	English
Pages (from-to)	2073-2075
Number of pages	3
Journal	Nonlinear Dynamics
Volume	87
Issue number	3
Early online date	2 Nov 2016
DOIs	https://doi.org/10.1007/s11071-016-3171-9
Publication status	Published - Feb 2017

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

SDG 9 Industry, Innovation, and Infrastructure

User-Defined Keywords

Authenticated key exchange
Chaotic maps
Cryptanalysis
Cryptography

Access to Document

10.1007/s11071-016-3171-9

Cite this

@article{3a74b00fdaec4482ae1134265db2a296,

title = "Comments on “An improved secure and efficient password and chaos-based two-party key agreement protocol”",

abstract = "Recently, Liu and Xue proposed a secure two-party password-based authenticated key exchange protocol by utilizing the semi-group property of the Chebyshev chaotic maps. We exploit the vulnerability of the protocol in this paper by illustrating an off-line password guessing attack. In this attack, the password of a honest user will be recover by an attacker without being noticed by the server or the victim. To overcome such problem, we propose a simple and compatible fix.",

keywords = "Authenticated key exchange, Chaotic maps, Cryptanalysis, Cryptography",

author = "Chen, \{Chien Ming\} and Weicheng Fang and Wang, \{King Hang\} and Wu, \{Tsu Yang\}",

note = "The work was supported in part by the Project NSFC (National Natural Science Foundation of China) under Grant Number 61402135 and in part by Shenzhen Technical Project under Grant Number JCYJ20150513151706574. Publisher Copyright: {\textcopyright} 2016, Springer Science+Business Media Dordrecht.",

year = "2017",

month = feb,

doi = "10.1007/s11071-016-3171-9",

language = "English",

volume = "87",

pages = "2073--2075",

journal = "Nonlinear Dynamics",

issn = "0924-090X",

publisher = "Springer Netherlands",

number = "3",

}

TY - JOUR

T1 - Comments on “An improved secure and efficient password and chaos-based two-party key agreement protocol”

AU - Chen, Chien Ming

AU - Fang, Weicheng

AU - Wang, King Hang

AU - Wu, Tsu Yang

N1 - The work was supported in part by the Project NSFC (National Natural Science Foundation of China) under Grant Number 61402135 and in part by Shenzhen Technical Project under Grant Number JCYJ20150513151706574. Publisher Copyright: © 2016, Springer Science+Business Media Dordrecht.

PY - 2017/2

Y1 - 2017/2

N2 - Recently, Liu and Xue proposed a secure two-party password-based authenticated key exchange protocol by utilizing the semi-group property of the Chebyshev chaotic maps. We exploit the vulnerability of the protocol in this paper by illustrating an off-line password guessing attack. In this attack, the password of a honest user will be recover by an attacker without being noticed by the server or the victim. To overcome such problem, we propose a simple and compatible fix.

AB - Recently, Liu and Xue proposed a secure two-party password-based authenticated key exchange protocol by utilizing the semi-group property of the Chebyshev chaotic maps. We exploit the vulnerability of the protocol in this paper by illustrating an off-line password guessing attack. In this attack, the password of a honest user will be recover by an attacker without being noticed by the server or the victim. To overcome such problem, we propose a simple and compatible fix.

KW - Authenticated key exchange

KW - Chaotic maps

KW - Cryptanalysis

KW - Cryptography

UR - https://www.scopus.com/pages/publications/84994297176

U2 - 10.1007/s11071-016-3171-9

DO - 10.1007/s11071-016-3171-9

M3 - Journal article

AN - SCOPUS:84994297176

SN - 0924-090X

VL - 87

SP - 2073

EP - 2075

JO - Nonlinear Dynamics

JF - Nonlinear Dynamics

IS - 3

ER -

Comments on “An improved secure and efficient password and chaos-based two-party key agreement protocol”

Abstract

UN SDGs

User-Defined Keywords

Access to Document

Other files and links

Fingerprint

Cite this