IEEE Open Journal of the Computer Society (Jan 2022)

Leakage-Resilient Certificate-Based Authenticated Key Exchange Protocol

  • Tung-Tso Tsai,
  • Sen-Shan Huang,
  • Yuh-Min Tseng,
  • Yun-Hsin Chuang,
  • Ying-Hao Hung

DOI
https://doi.org/10.1109/OJCS.2022.3198073
Journal volume & issue
Vol. 3
pp. 137 – 148

Abstract

Read online

Certificate-based public key cryptography (CB-PKC) removes the problem of certificate management in traditional public key systems and avoids the key escrow problem in identity-based public key systems. In the past, many authenticated key exchange (AKE) protocols based on CB-PKC systems, called CB-AKE, were proposed to be applied to secure communications between two remote participants. However, these existing CB-AKE protocols become insecure since attackers could compute and obtain the whole secret key from some partial leaked information of the secret key by side channel attacks. In this paper, our goal is to propose the $first$ CB-AKE protocol with the property to resist side channel attacks, called leakage-resilient CB-AKE (LR-CB-AKE). The proposed LR-CB-AKE protocol is formally proven to be secure in the generic bilinear group (GBG) model under the discrete logarithm (DL) and computational Diffie-Hellman (CDH) assumptions.

Keywords