Quantum Safe Computation-Friendly Identity-Binding Password Authenticated Key Exchange

Pratima Jana; Ratna Dutta; Cong Zuo

doi:10.1007/978-981-96-0957-4_19

Quantum Safe Computation-Friendly Identity-Binding Password Authenticated Key Exchange

Pratima Jana^*, Ratna Dutta, Cong Zuo

^*Corresponding author for this work

School of Cyberspace Science and Technology

Indian Institute of Technology Kharagpur

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Password Authenticated Key Exchange (PAKE) protocols are of paramount importance in applications like the Internet of Things (IoT) and wireless networking ensures the security of communication systems by enabling two parties to establish a shared secret key using only a low-entropy password. Recent advances in PAKE protocols have aimed to provide stronger security assurances including resilience against offline dictionary attacks, replay attacks, compromise attacks for both parties (client and server), pre-computation attacks, mutual authentication and perfect forward secrecy. Despite several improvements, challenges persist in both security and efficiency for existing PAKE proposals. To address these challenges, Cremers et al. (Crypto ’22) introduced the concept of identity-binding PAKE. None of the existing identity-binding PAKE is post-quantum secure. In response to these challenges, our contribution aims to bridge the gap in practical and secure post-quantum identity-binding PAKE. Our work proposes a post-quantum secure identity-binding PAKE protocols, LPAKE with enhanced security. Our lattice-based protocol LPAKE is secure based on the Module Pairing with Errors (MPWE) assumption and the Decision Module Learning with Errors (DMLWE) assumption. We present comprehensive security proof in a conventional game-based indistinguishability security model. Through rigorous performance evaluations, the paper demonstrates that the proposed PAKE scheme exhibits notable advantages in terms of total computation cost with enhanced security properties compared to existing identity-binding PAKE protocols.

Original language	English
Title of host publication	Provable and Practical Security - 18th International Conference, ProvSec 2024, Proceedings
Editors	Joseph K. Liu, Liqun Chen, Shi-Feng Sun, Xiaoning Liu
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	298-309
Number of pages	12
ISBN (Print)	9789819609567
DOIs	http://doi.org/10.1007/978-981-96-0957-4_19
Publication status	Published - 2025
Event	18th International Conference on Provable and Practical Security, ProvSec 2024 - Gold Coast, Australia Duration: 25 Sept 2024 → 27 Sept 2024

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	14904 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	18th International Conference on Provable and Practical Security, ProvSec 2024
Country/Territory	Australia
City	Gold Coast
Period	25/09/24 → 27/09/24

Keywords

Authenticated Key Exchange
Internet of Things
Lattice-based Cryptography
Post-quantum Cryptography

Access to Document

10.1007/978-981-96-0957-4_19

Cite this

Jana, P., Dutta, R., & Zuo, C. (2025). Quantum Safe Computation-Friendly Identity-Binding Password Authenticated Key Exchange. In J. K. Liu, L. Chen, S.-F. Sun, & X. Liu (Eds.), Provable and Practical Security - 18th International Conference, ProvSec 2024, Proceedings (pp. 298-309). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 14904 LNCS). Springer Science and Business Media Deutschland GmbH. http://doi.org/10.1007/978-981-96-0957-4_19

Jana, Pratima ; Dutta, Ratna ; Zuo, Cong. / Quantum Safe Computation-Friendly Identity-Binding Password Authenticated Key Exchange. Provable and Practical Security - 18th International Conference, ProvSec 2024, Proceedings. editor / Joseph K. Liu ; Liqun Chen ; Shi-Feng Sun ; Xiaoning Liu. Springer Science and Business Media Deutschland GmbH, 2025. pp. 298-309 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{506aaa477cd54a5ca7e45b433377a04a,

title = "Quantum Safe Computation-Friendly Identity-Binding Password Authenticated Key Exchange",

abstract = "Password Authenticated Key Exchange (PAKE) protocols are of paramount importance in applications like the Internet of Things (IoT) and wireless networking ensures the security of communication systems by enabling two parties to establish a shared secret key using only a low-entropy password. Recent advances in PAKE protocols have aimed to provide stronger security assurances including resilience against offline dictionary attacks, replay attacks, compromise attacks for both parties (client and server), pre-computation attacks, mutual authentication and perfect forward secrecy. Despite several improvements, challenges persist in both security and efficiency for existing PAKE proposals. To address these challenges, Cremers et al. (Crypto {\textquoteright}22) introduced the concept of identity-binding PAKE. None of the existing identity-binding PAKE is post-quantum secure. In response to these challenges, our contribution aims to bridge the gap in practical and secure post-quantum identity-binding PAKE. Our work proposes a post-quantum secure identity-binding PAKE protocols, LPAKE with enhanced security. Our lattice-based protocol LPAKE is secure based on the Module Pairing with Errors (MPWE) assumption and the Decision Module Learning with Errors (DMLWE) assumption. We present comprehensive security proof in a conventional game-based indistinguishability security model. Through rigorous performance evaluations, the paper demonstrates that the proposed PAKE scheme exhibits notable advantages in terms of total computation cost with enhanced security properties compared to existing identity-binding PAKE protocols.",

keywords = "Authenticated Key Exchange, Internet of Things, Lattice-based Cryptography, Post-quantum Cryptography",

author = "Pratima Jana and Ratna Dutta and Cong Zuo",

note = "Publisher Copyright: {\textcopyright} The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd. 2025.; 18th International Conference on Provable and Practical Security, ProvSec 2024 ; Conference date: 25-09-2024 Through 27-09-2024",

year = "2025",

doi = "10.1007/978-981-96-0957-4\_19",

language = "English",

isbn = "9789819609567",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "298--309",

editor = "Liu, \{Joseph K.\} and Liqun Chen and Shi-Feng Sun and Xiaoning Liu",

booktitle = "Provable and Practical Security - 18th International Conference, ProvSec 2024, Proceedings",

address = "Germany",

}

Jana, P, Dutta, R & Zuo, C 2025, Quantum Safe Computation-Friendly Identity-Binding Password Authenticated Key Exchange. in JK Liu, L Chen, S-F Sun & X Liu (eds), Provable and Practical Security - 18th International Conference, ProvSec 2024, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 14904 LNCS, Springer Science and Business Media Deutschland GmbH, pp. 298-309, 18th International Conference on Provable and Practical Security, ProvSec 2024, Gold Coast, Australia, 25/09/24. http://doi.org/10.1007/978-981-96-0957-4_19

Quantum Safe Computation-Friendly Identity-Binding Password Authenticated Key Exchange. / Jana, Pratima; Dutta, Ratna; Zuo, Cong.
Provable and Practical Security - 18th International Conference, ProvSec 2024, Proceedings. ed. / Joseph K. Liu; Liqun Chen; Shi-Feng Sun; Xiaoning Liu. Springer Science and Business Media Deutschland GmbH, 2025. p. 298-309 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 14904 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Quantum Safe Computation-Friendly Identity-Binding Password Authenticated Key Exchange

AU - Jana, Pratima

AU - Dutta, Ratna

AU - Zuo, Cong

N1 - Publisher Copyright: © The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd. 2025.

PY - 2025

Y1 - 2025

N2 - Password Authenticated Key Exchange (PAKE) protocols are of paramount importance in applications like the Internet of Things (IoT) and wireless networking ensures the security of communication systems by enabling two parties to establish a shared secret key using only a low-entropy password. Recent advances in PAKE protocols have aimed to provide stronger security assurances including resilience against offline dictionary attacks, replay attacks, compromise attacks for both parties (client and server), pre-computation attacks, mutual authentication and perfect forward secrecy. Despite several improvements, challenges persist in both security and efficiency for existing PAKE proposals. To address these challenges, Cremers et al. (Crypto ’22) introduced the concept of identity-binding PAKE. None of the existing identity-binding PAKE is post-quantum secure. In response to these challenges, our contribution aims to bridge the gap in practical and secure post-quantum identity-binding PAKE. Our work proposes a post-quantum secure identity-binding PAKE protocols, LPAKE with enhanced security. Our lattice-based protocol LPAKE is secure based on the Module Pairing with Errors (MPWE) assumption and the Decision Module Learning with Errors (DMLWE) assumption. We present comprehensive security proof in a conventional game-based indistinguishability security model. Through rigorous performance evaluations, the paper demonstrates that the proposed PAKE scheme exhibits notable advantages in terms of total computation cost with enhanced security properties compared to existing identity-binding PAKE protocols.

AB - Password Authenticated Key Exchange (PAKE) protocols are of paramount importance in applications like the Internet of Things (IoT) and wireless networking ensures the security of communication systems by enabling two parties to establish a shared secret key using only a low-entropy password. Recent advances in PAKE protocols have aimed to provide stronger security assurances including resilience against offline dictionary attacks, replay attacks, compromise attacks for both parties (client and server), pre-computation attacks, mutual authentication and perfect forward secrecy. Despite several improvements, challenges persist in both security and efficiency for existing PAKE proposals. To address these challenges, Cremers et al. (Crypto ’22) introduced the concept of identity-binding PAKE. None of the existing identity-binding PAKE is post-quantum secure. In response to these challenges, our contribution aims to bridge the gap in practical and secure post-quantum identity-binding PAKE. Our work proposes a post-quantum secure identity-binding PAKE protocols, LPAKE with enhanced security. Our lattice-based protocol LPAKE is secure based on the Module Pairing with Errors (MPWE) assumption and the Decision Module Learning with Errors (DMLWE) assumption. We present comprehensive security proof in a conventional game-based indistinguishability security model. Through rigorous performance evaluations, the paper demonstrates that the proposed PAKE scheme exhibits notable advantages in terms of total computation cost with enhanced security properties compared to existing identity-binding PAKE protocols.

KW - Authenticated Key Exchange

KW - Internet of Things

KW - Lattice-based Cryptography

KW - Post-quantum Cryptography

UR - http://www.scopus.com/pages/publications/85219172943

U2 - 10.1007/978-981-96-0957-4_19

DO - 10.1007/978-981-96-0957-4_19

M3 - Conference contribution

AN - SCOPUS:85219172943

SN - 9789819609567

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 298

EP - 309

BT - Provable and Practical Security - 18th International Conference, ProvSec 2024, Proceedings

A2 - Liu, Joseph K.

A2 - Chen, Liqun

A2 - Sun, Shi-Feng

A2 - Liu, Xiaoning

PB - Springer Science and Business Media Deutschland GmbH

T2 - 18th International Conference on Provable and Practical Security, ProvSec 2024

Y2 - 25 September 2024 through 27 September 2024

ER -

Jana P, Dutta R, Zuo C. Quantum Safe Computation-Friendly Identity-Binding Password Authenticated Key Exchange. In Liu JK, Chen L, Sun SF, Liu X, editors, Provable and Practical Security - 18th International Conference, ProvSec 2024, Proceedings. Springer Science and Business Media Deutschland GmbH. 2025. p. 298-309. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-981-96-0957-4_19

Quantum Safe Computation-Friendly Identity-Binding Password Authenticated Key Exchange

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this