A Secure and Efficient Fault-Tolerant Group Key Agreement Protocol

A fault-tolerant group key agreement (GKA) protocol establishes a shared key among participants of a group even when some malicious participants disrupt key agreement processes. In 2010, Zhao et al. proposed a new efficient fault-tolerant GKA protocol, named EGKA, with lower computational cost and average communication cost than all previously fault-tolerant GKA protocols, and claimed the EGKA is resistant to passive and active attacks. Unfortunately, we show that the EGKA protocol seems not fault-tolerant in several non-trivial cases as it is vulnerable to the different key attack and the message tampering attack, in which an honest participant can be easily excluded from the set of participants. To remedy these security flaws, we propose an improved EGKA protocol, which covers all the identified weaknesses of Zhao et al.'s scheme and is still more efficient than the existing fault-tolerant GKA protocols.

[1]  Jun Shao,et al.  Efficient Certificateless Authenticated Asymmetric Group Key Agreement Protocol , 2012, KSII Trans. Internet Inf. Syst..

[2]  Gene Tsudik,et al.  Key Agreement in Dynamic Peer Groups , 2000, IEEE Trans. Parallel Distributed Syst..

[3]  Jong Kim,et al.  Security weakness of Tseng's fault-tolerant conference-key agreement protocol , 2009, J. Syst. Softw..

[4]  Wen-Guey Tzeng,et al.  A Secure Fault-Tolerant Conference-Key Agreement Protocol , 2002, IEEE Trans. Computers.

[5]  Josep Domingo-Ferrer,et al.  Bridging Broadcast Encryption and Group Key Agreement , 2011, ASIACRYPT.

[6]  Chak-Kuen Wong,et al.  A conference key distribution system , 1982, IEEE Trans. Inf. Theory.

[7]  Jonathan Katz,et al.  Modeling insider attacks on group key-exchange protocols , 2005, CCS '05.

[8]  Dawu Gu,et al.  An efficient fault-tolerant group key agreement protocol , 2010, Comput. Commun..

[9]  Yuh-Min Tseng,et al.  A communication-efficient and fault-tolerant conference-key agreement protocol with forward secrecy , 2007, J. Syst. Softw..

[10]  Gene Tsudik,et al.  Group key agreement efficient in communication , 2004, IEEE Transactions on Computers.

[11]  Zhibin Zhou,et al.  An Optimal Key Distribution Scheme for Secure Multicast Group Communication , 2010, 2010 Proceedings IEEE INFOCOM.

[12]  Ilyong Chung,et al.  The design of conference key distribution system employing a symmetric balanced incomplete block design , 2002, Inf. Process. Lett..

[13]  Yiming Ye,et al.  A secure conference scheme for mobile communications , 2003, IEEE Trans. Wirel. Commun..

[14]  Yuh-Min Tseng An Improved Conference-Key Agreement Protocol with Forward Secrecy , 2005, Informatica.

[15]  Xingwen Zhao,et al.  Dynamic asymmetric group key agreement for ad hoc networks , 2011, Ad Hoc Networks.

[16]  Gene Tsudik,et al.  Robust group key agreement using short broadcasts , 2007, CCS '07.

[17]  Yu-Fang Chung,et al.  A conference key agreement protocol with fault-tolerant capability , 2009, Comput. Stand. Interfaces.