Skip to Main content Skip to Navigation
Conference papers

A New Security Model for Authenticated Key Agreement

Abstract : The Canetti–Krawczyk (CK) and extended Canetti–Krawczyk (eCK) security mo-dels, are widely used to provide security arguments for key agreement protocols. We discuss security shades in the (e)CK models, and some practical attacks unconsi-dered in (e)CK–security arguments. We propose a strong security model which en-compasses the eCK one. We also propose a new protocol, called Strengthened MQV (SMQV), which in addition to provide the same efficiency as the (H)MQV protocols, is particularly suited for distributed implementations wherein a tamper–proof device is used to store long–lived keys, while session keys are used on an untrusted host machine. The SMQV protocol meets our security definition under the Gap Diffie– Hellman assumption and the Random Oracle model.
Document type :
Conference papers
Complete list of metadatas

Cited literature [34 references]  Display  Hide  Download
Contributor : Jean Claude Bajard <>
Submitted on : Friday, January 2, 2015 - 1:23:51 PM
Last modification on : Wednesday, November 4, 2020 - 2:46:16 PM
Long-term archiving on: : Friday, April 3, 2015 - 10:11:39 AM


Files produced by the author(s)



Augustin Sarr, Philippe Elbaz-Vincent, Jean-Claude Bajard. A New Security Model for Authenticated Key Agreement. Seventh Conference on Security and Cryptography for Networks (SNC), Sep 2010, Amalfi, Italy. pp.219 - 234, ⟨10.1007/978-3-642-15317-4_15⟩. ⟨hal-01099279⟩



Record views


Files downloads