One of the next promising generation networks is personal networks where a user can make ad-hoc networks with his/her personal devices. However, the present security mechanism does not consider at all what happens whenever a mobile node (device) is compromised, lost or stolen. Since a user may hold many different types of devices, the leakage of stored secrets sometimes results in the complete breakdown of the intended security level. For that, we propose two Leakage-Resilient and Forward-Secure Authenticated Key Exchange (LRFS-AKE1 and LRFS-AKE2) protocols where the former is used to authenticate a device when its owner is present whereas the latter is used in the other case. These protocols guarantee not only forward secrecy of the shared key between device and its server but also a new additional layer of security against leakage of stored secrets. Furthermore, we give a secure group communication framework, based on the LRFS-AKE1 and LRFS-AKE2 protocols, in Private Personal Area Networks (P-PANs) which provides a group key privacy against the involved server who does not deviate the protocol.
[1]
Thomas D. Wu.
The Secure Remote Password Protocol
,
1998,
NDSS.
[2]
Mihir Bellare,et al.
Random oracles are practical: a paradigm for designing efficient protocols
,
1993,
CCS '93.
[3]
Martin Jacobsson,et al.
Overall secure PN architecture
,
2005
.
[4]
SeongHan Shin,et al.
A Simple Leakage-Resilient Authenticated Key Establishment Protocol, Its Extensions, and Applications
,
2005,
IEICE Trans. Fundam. Electron. Commun. Comput. Sci..
[5]
SeongHan Shin,et al.
NETp1-10: A New Security Architecture for Personal Networks
,
2006,
IEEE Globecom 2006.
[6]
Christos Politis,et al.
MAGNET secure service discovery architecture
,
2005
.
[7]
SeongHan Shin,et al.
Leakage-Resilient Authenticated Key Establishment Protocols
,
2003,
ASIACRYPT.
[8]
Yacine Rebahi,et al.
Implementation and evaluation of the network level security architecture
,
2005
.
[9]
Christos Politis,et al.
Personal network security architecture
,
2005
.