Password authenticated key exchange-based on Kyber for mobile devices

dc.authoridDursun, Ahmet Faruk/0000-0003-3094-0063
dc.contributor.authorSeyhan, Kubra
dc.contributor.authorAkleylek, Sedat
dc.contributor.authorDursun, Ahmet Faruk
dc.date.accessioned2024-05-19T14:46:16Z
dc.date.available2024-05-19T14:46:16Z
dc.date.issued2024
dc.departmentİstinye Üniversitesien_US
dc.description.abstractIn this article, a password-authenticated key exchange (PAKE) version of the National Institute of Standards and Technology (NIST) post-quantum cryptography (PQC) public-key encryption and key-establishment standard is constructed. We mainly focused on how the PAKE version of PQC standard Kyber with mobile compatibility can be obtained by using simple structured password components. In the design process, the conventional password-based authenticated key exchange (PAK) approach is updated under the module learning with errors (MLWE) assumptions to add passwordbased authentication. Thanks to the following PAK model, the proposed Kyber.PAKE provides explicit authentication and perfect forward secrecy (PFS). The resistance analysis against the password dictionary attack of Kyber.PAKE is examined by using random oracle model (ROM) assumptions. In the security analysis, the cumulative distribution function (CDF) Zipf (CDF-Zipf) model is also followed to provide realistic security examinations. According to the implementation results, Kyber.PAKE presents better run-time than lattice-based PAKE schemes with similar features, even if it contains complex key encapsulation mechanism (KEM) components. The comparison results show that the proposed PAKE scheme will come to the fore for the future security of mobile environments and other areas.en_US
dc.description.sponsorshipEstonian Research Council [PRG946]; TUBITAK [121R006]en_US
dc.description.sponsorshipThis work was supported by the Estonian Research Council Grant no. PRG946 and TUBITAK under grant no. 121R006. The funders had no role in study design, data collection and analysis, decision to publish, or preparation of the manuscript.en_US
dc.identifier.doi10.7717/peerj-cs.1960
dc.identifier.issn2376-5992
dc.identifier.pmid38660167en_US
dc.identifier.urihttps://doi.org10.7717/peerj-cs.1960
dc.identifier.urihttps://hdl.handle.net/20.500.12713/5485
dc.identifier.volume10en_US
dc.identifier.wosWOS:001194917200003en_US
dc.identifier.wosqualityN/Aen_US
dc.indekslendigikaynakWeb of Scienceen_US
dc.language.isoenen_US
dc.publisherPeerj Incen_US
dc.relation.ispartofPeerj Computer Scienceen_US
dc.relation.publicationcategoryMakale - Uluslararası Hakemli Dergi - Kurum Öğretim Elemanıen_US
dc.rightsinfo:eu-repo/semantics/openAccessen_US
dc.snmz20240519_kaen_US
dc.subjectPost-Quantum Cryptographyen_US
dc.subjectPassword-Based Authenticated Key Exchangeen_US
dc.subjectLattice-Based Cryptographyen_US
dc.titlePassword authenticated key exchange-based on Kyber for mobile devicesen_US
dc.typeArticleen_US

Dosyalar