Key agreement in peer-to-peer wireless networks

Mario Cagalj; Srdjan Capkun; Jean-Pierre Hubaux

doi:10.1109/JPROC.2005.862475

Key agreement in peer-to-peer wireless networks

Mario Cagalj, Srdjan Capkun, Jean-Pierre Hubaux

Research output: Contribution to journal › Journal article › Research › peer-review

Abstract

We present a set of simple techniques for key establishment over a radio link in peer-to-peer networks. Our approach is based on the Diffie-Hellman key agreement protocol, which is known to be vulnerable to the “man-in-the-middle” attack if the two users involved in the protocol do not share any authenticated information about each other (e.g., public keys, certificates, passwords, shared keys, etc.) prior to the protocol execution. In this paper, we solve the problem by leveraging on the natural ability of users to authenticate each other by visual and verbal contact.We propose three techniques: the first is based on visual comparison of short strings, the second on distance bounding, and the third on integrity codes; in each case, the users do not need to enter any password or other data, nor do they need physical or infrared connectivity between their devices. We base our analysis on a well-established methodology that leads us to a rigorous modularization and a thorough robustness proof of our proposal.

Original language	English
Journal	Proceedings of the IEEE
Volume	94
Issue number	2
Pages (from-to)	467-478
ISSN	0018-9219
DOIs	https://doi.org/10.1109/JPROC.2005.862475
Publication status	Published - 2006

Keywords

insecure channels
Key agreement
DH

Access to Document

10.1109/JPROC.2005.862475

OpenUrl availability

Full text

Cite this

@article{05848caee026408b967855111e42916c,

title = "Key agreement in peer-to-peer wireless networks",

abstract = "We present a set of simple techniques for key establishment over a radio link in peer-to-peer networks. Our approach is based on the Diffie-Hellman key agreement protocol, which is known to be vulnerable to the “man-in-the-middle” attack if the two users involved in the protocol do not share any authenticated information about each other (e.g., public keys, certificates, passwords, shared keys, etc.) prior to the protocol execution. In this paper, we solve the problem by leveraging on the natural ability of users to authenticate each other by visual and verbal contact.We propose three techniques: the first is based on visual comparison of short strings, the second on distance bounding, and the third on integrity codes; in each case, the users do not need to enter any password or other data, nor do they need physical or infrared connectivity between their devices. We base our analysis on a well-established methodology that leads us to a rigorous modularization and a thorough robustness proof of our proposal.",

keywords = "insecure channels, Key agreement, DH",

author = "Mario Cagalj and Srdjan Capkun and Jean-Pierre Hubaux",

year = "2006",

doi = "10.1109/JPROC.2005.862475",

language = "English",

volume = "94",

pages = "467--478",

journal = "Proceedings of the IEEE",

issn = "0018-9219",

publisher = "Institute of Electrical and Electronics Engineers",

number = "2",

}

TY - JOUR

T1 - Key agreement in peer-to-peer wireless networks

AU - Cagalj, Mario

AU - Capkun, Srdjan

AU - Hubaux, Jean-Pierre

PY - 2006

Y1 - 2006

N2 - We present a set of simple techniques for key establishment over a radio link in peer-to-peer networks. Our approach is based on the Diffie-Hellman key agreement protocol, which is known to be vulnerable to the “man-in-the-middle” attack if the two users involved in the protocol do not share any authenticated information about each other (e.g., public keys, certificates, passwords, shared keys, etc.) prior to the protocol execution. In this paper, we solve the problem by leveraging on the natural ability of users to authenticate each other by visual and verbal contact.We propose three techniques: the first is based on visual comparison of short strings, the second on distance bounding, and the third on integrity codes; in each case, the users do not need to enter any password or other data, nor do they need physical or infrared connectivity between their devices. We base our analysis on a well-established methodology that leads us to a rigorous modularization and a thorough robustness proof of our proposal.

AB - We present a set of simple techniques for key establishment over a radio link in peer-to-peer networks. Our approach is based on the Diffie-Hellman key agreement protocol, which is known to be vulnerable to the “man-in-the-middle” attack if the two users involved in the protocol do not share any authenticated information about each other (e.g., public keys, certificates, passwords, shared keys, etc.) prior to the protocol execution. In this paper, we solve the problem by leveraging on the natural ability of users to authenticate each other by visual and verbal contact.We propose three techniques: the first is based on visual comparison of short strings, the second on distance bounding, and the third on integrity codes; in each case, the users do not need to enter any password or other data, nor do they need physical or infrared connectivity between their devices. We base our analysis on a well-established methodology that leads us to a rigorous modularization and a thorough robustness proof of our proposal.

KW - insecure channels

KW - Key agreement

KW - DH

U2 - 10.1109/JPROC.2005.862475

DO - 10.1109/JPROC.2005.862475

M3 - Journal article

SN - 0018-9219

VL - 94

SP - 467

EP - 478

JO - Proceedings of the IEEE

JF - Proceedings of the IEEE

IS - 2

ER -

Key agreement in peer-to-peer wireless networks

Abstract

Keywords

Access to Document

OpenUrl availability

Fingerprint

Cite this