University of Surrey

Test tubes in the lab Research in the ATI Dance Research

Modeling Key Compromise Impersonation Attacks on Group Key Exchange Protocols

Gorantla, MC, Boyd, C, Nieto, JMG and Manulis, M (2011) Modeling Key Compromise Impersonation Attacks on Group Key Exchange Protocols ACM Transactions on Information and Systems Security (TISSEC), 14 (4), 28.

Full text not available from this repository.


Two-party key exchange (2PKE) protocols have been rigorously analyzed under various models considering different adversarial actions. However, the analysis of group key exchange (GKE) protocols has not been as extensive as that of 2PKE protocols. Particularly, an important security attribute called key compromise impersonation (KCI) resilience has been completely ignored for the case of GKE protocols. Informally, a protocol is said to provide KCI resilience if the compromise of the long-term secret key of a protocol participant A does not allow the adversary to impersonate an honest participant B to A. In this paper, we argue that KCI resilience for GKE protocols is at least as important as it is for 2PKE protocols. Our first contribution is revised definitions of security for GKE protocols considering KCI attacks by both outsider and insider adversaries. We also give a new proof of security for an existing two-round GKE protocol under the revised security definitions assuming random oracles. We then show how to achieve insider KCIR in a generic way using a known compiler in the literature. As one may expect, this additional security assurance comes at the cost of an extra round of communication. Finally, we show that a few existing protocols are not secure against outsider KCI attacks. The attacks on these protocols illustrate the necessity of considering KCI resilience for GKE protocols.

Item Type: Article
Divisions : Surrey research (other units)
Authors :
Gorantla, MC
Boyd, C
Nieto, JMG
Date : 2011
DOI : 10.1145/2043628.2043629
Depositing User : Symplectic Elements
Date Deposited : 17 May 2017 12:22
Last Modified : 24 Jan 2020 22:07

Actions (login required)

View Item View Item


Downloads per month over past year

Information about this web site

© The University of Surrey, Guildford, Surrey, GU2 7XH, United Kingdom.
+44 (0)1483 300800