New efficient simple authenticated key agreement protocol

Abstract

Recently, Kim et al. proposed an improvement to the Simple Authenticated Key Agreement (SAKA) protocol that has the same stability as the existing methods, and that has a much efficient processing performance. However, this improved scheme is still susceptible to offline password guessing attacks and the integrity violence of a session key from illegal modification. The current paper demonstrates the vulnerability of Kim et al.'s scheme to off-line password guessing attacks and the integrity violence of the session key from illegal modification, and then presents an improved protocol based on the elliptic curve discrete logarithm problem (ECDLP) to resolve such problems. As a result, the proposed protocol resists off-line password guessing attacks and modification attack, while also providing more security and efficiency. © Springer-Verlag Berlin Heidelberg 2005.