Security flaws in authentication and key establishment protocols for mobile communications

作者:

Highlights:

摘要

Mobile electronic commerce has started recently to appear in the scene by exploiting the advantages of mobile computing and telecommunications in order to provide a large number of advanced services to mobile users. A variety of protocols suitable for applications in upcoming third-generation mobile systems such as UMTS have been proposed. In this paper, we identify security flaws with several authentication and key establishment protocols for mobile communications introducing a new kind of attack: known key-share attack. Our results show that the protocols do not provide authentication as intended.

论文关键词:Key establishment protocol,Mutual authentication,Known key-share attack,Unknown key-share attack,Denial-of-Service attack

论文评审过程:Available online 14 January 2005.

论文官网地址:https://doi.org/10.1016/j.amc.2004.10.044