The SPEKE Protocol Revisited

Abstract

The SPEKE protocol is commonly considered one of the classic Password Authenticated Key Exchange (PAKE) schemes. It has been included in international standards (particularly, ISO/IEC 11770-4 and IEEE 1363.2) and deployed in commercial products (e.g., Blackberry). We observe that the original SPEKE specification is subtly different from those defined in the ISO/IEC 11770-4 and IEEE 1363.2 standards. We show that those differences have critical security implications by presenting two new attacks on SPEKE: an impersonation attack and a key-malleability attack. The first attack allows an attacker to impersonate a user without knowing the password by engaging in two parallel sessions with the victim. The second attack allows an attacker to manipulate the session key established between two honest users without being detected. Both attacks are applicable to the original SPEKE scheme, and are only partially addressed in the ISO/IEC 11770-4 and IEEE 1363.2 standards. We highlight deficiencies in both standards and suggest concrete changes.

Metadata

Item Type:	Conference or Workshop Item
Authors/Creators:	Hao, Feng Shahandashti, Siamak F. https://orcid.org/0000-0002-5284-6847
Keywords:	SPEKE,PAKE,password-authenticated key exchange,key exchange,IEEE P1362.2,ISO/IEC 11770-4,Security standards
Dates:	Published: 2014
Institution:	The University of York
Academic Units:	The University of York > Faculty of Sciences (York) > Computer Science (York)
Depositing User:	Pure (York)
Date Deposited:	23 Jun 2017 14:15
Last Modified:	08 Jan 2025 00:02
Published Version:	https://doi.org/10.1007/978-3-319-14054-4_2
Status:	Published
Refereed:	Yes
Identification Number:	10.1007/978-3-319-14054-4_2
Open Archives Initiative ID (OAI ID):	oai:eprints.whiterose.ac.uk:117998

Download

Accepted Version

Filename: SPEKE_Revisited.pdf

Description: SPEKE-Revisited

CLICK TO DOWNLOAD

CORE (COnnecting REpositories)

The SPEKE Protocol Revisited

Abstract

Metadata

Download

Accepted Version

Export

Statistics