Hao, Feng, Metere, Roberto orcid.org/0000-0001-6992-4285, Shahandashti, Siamak F. orcid.org/0000-0002-5284-6847 et al. (1 more author) (2018) Analyzing and Patching SPEKE in ISO/IEC. Information Forensics and Security, IEEE Transactions on. pp. 2844-2855. ISSN 1556-6013
Abstract
Simple password exponential key exchange (SPEKE) is a well-known password authenticated key exchange protocol that has been used in Blackberry phones for secure messaging and Entrust's TruePass end-to-end web products. It has also been included into international standards such as ISO/IEC 11770-4 and IEEE P1363.2. In this paper, we analyze the SPEKE protocol as specified in the ISO/IEC and IEEE standards. We identify that the protocol is vulnerable to two new attacks: an impersonation attack that allows an attacker to impersonate a user without knowing the password by launching two parallel sessions with the victim, and a key-malleability attack that allows a man-in-the-middle to manipulate the session key without being detected by the end users. Both attacks have been acknowledged by the technical committee of ISO/IEC SC 27 and ISO/IEC 11770-4 revised as a result. We propose a patched SPEKE called P-SPEKE and present a formal analysis in the Applied Pi Calculus using ProVerif to show that the proposed patch prevents both attacks. The proposed patch has been included into the latest revision of ISO/IEC 11770-4 published in 2017.
Metadata
Item Type: | Article |
---|---|
Authors/Creators: |
|
Copyright, Publisher and Additional Information: | This is an author-produced version of the published paper. Uploaded in accordance with the publisher’s self-archiving policy. Further copying may not be permitted; contact the publisher for details |
Keywords: | key exchange,SPEKE,ISO standards,IEC standards,Pi Calculus,ProVerif,Security,Impersonation attack,key agreement,formal methods,Password-based authenticated key exchange |
Dates: |
|
Institution: | The University of York |
Academic Units: | The University of York > Faculty of Sciences (York) > Computer Science (York) |
Depositing User: | Pure (York) |
Date Deposited: | 10 Apr 2018 14:40 |
Last Modified: | 16 Oct 2024 14:31 |
Published Version: | https://doi.org/10.1109/TIFS.2018.2832984 |
Status: | Published |
Refereed: | Yes |
Identification Number: | 10.1109/TIFS.2018.2832984 |
Related URLs: | |
Open Archives Initiative ID (OAI ID): | oai:eprints.whiterose.ac.uk:128234 |
Download
Filename: Analysing_and_Patching_SPEKE_in_ISO_IEC.pdf
Description: Analysing_and_Patching_SPEKE_in_ISO_IEC