Prevention of Exponential Equivalence in Simple Password Exponential Key Exchange (SPEKE)

Hanwook Lee; Dongho Won

doi:10.3390/sym7031587

Symmetry (Sep 2015)

Prevention of Exponential Equivalence in Simple Password Exponential Key Exchange (SPEKE)

Hanwook Lee,
Dongho Won

Affiliations

Hanwook Lee: Department of Computer Engineering, Sungkyunkwan University, 2066 Seoburo, Suwon, Gyeonggido 440-746, Koera
Dongho Won: Department of Computer Engineering, Sungkyunkwan University, 2066 Seoburo, Suwon, Gyeonggido 440-746, Koera

DOI: https://doi.org/10.3390/sym7031587
Journal volume & issue: Vol. 7, no. 3
pp. 1587 – 1594

Abstract

Read online

Simple Password Exponential Key Exchange (SPEKE) and Dragonfly are simple password-based authenticated key exchange protocols that use a value derived from a shared password as a generator for modular exponentiation, as opposed to Diffie–Hellman key exchange, which uses a fixed value. However, it has been shown that in SPEKE, an active attacker, can examine multiple passwords in a single attempt because the passwords have an exponential correlation.We show that Dragonfly can also suffer from the same problem, and we propose a simple countermeasure to prevent the exponential equivalence in SPEKE.

Published in Symmetry

ISSN: 2073-8994 (Online)
Publisher: MDPI AG
Country of publisher: Switzerland
LCC subjects: Science: Mathematics
Website: http://www.mdpi.com/journal/symmetry/

About the journal

Abstract

Keywords