Yahalom (protocol)

From Wikipedia, the free encyclopedia
Jump to: navigation, search

Yahalom is an authentication and secure key-sharing protocol designed for use on an insecure network such as the Internet. Yahalom uses a trusted arbitrator to distribute a shared key between two people. This protocol can be considered as an improved version of Wide Mouth Frog protocol (with additional protection against man-in-the-middle attack), but less secure than Needham-Schroeder.

[edit] Protocol description

If Alice (A) initiates the communication to Bob (B) with S is a server trusted by both parties, the protocol can be specified as follows using security protocol notation:

  • A and B are identities of Alice and Bob respectively
  • KAS is a symmetric key known only to A and S
  • KBS is a symmetric key known only to B and S
  • NA and NB are nonces generated by A and B respectively
  • KAB is a symmetric, generated key, which will be the session key of the session between A and B

A \rightarrow B: A, N_A

Alice sends a message to Bob requesting communication.

B \rightarrow S: B,\{A, N_A, N_B\}_{K_{BS}}

Bob sends a message to the Server encrypted under KBS.

S \rightarrow A: \{B, K_{AB}, N_A, N_B\}_{K_{AS}}, \{A, K_{AB}\}_{K_{BS}}

The Server sends to Alice a message containing the generated session key KAB and a message to be forwarded to Bob.

A \rightarrow B: \{A, K_{AB}\}_{K_{BS}}, \{N_B\}_{K_{AB}}

Alice forwards the message to Bob and verifies NA has not changed. Bob will verify NB has not changed when he receives the message.

[edit] See also

[edit] References


Stub icon This cryptography-related article is a stub. You can help Wikipedia by expanding it.
Retrieved from "http://en.wikipedia.org/w/index.php?title=Yahalom_(protocol)&oldid=414742752"
Personal tools
Namespaces
Variants
Actions
Navigation
Interaction
Toolbox
Print/export
Languages