Douglas Stebila

Predicate-based key exchange

A threshold access tree for checking medical insurance coverage.

Abstract

We provide the first description of and security model for authenticated key exchange protocols with predicate-based authentication. In addition to the standard goal of session key security, our security model also provides for credential privacy: a participating party learns nothing more about the other party's credentials than whether they satisfy the given predicate. Our model also encompasses attribute-based key exchange since it is a special case of predicate-based key exchange.

We demonstrate how to realize a secure predicate-based key exchange protocol by combining any secure predicate-based signature scheme with the basic Diffie-Hellman key exchange protocol, providing an efficient and simple solution.

Keywords: predicate-based, attribute-based, key exchange, protocols, security models, cryptography

Reference

James Birkett, Douglas Stebila. Predicate-based key exchange. In Ron Steinfeld, Philip Hawkes, editors, Proc. 15th Australasian Conference on Information Security and Privacy (ACISP) 2010, LNCS, vol. 6168, pp. 282-299. Springer, July 2010. © Springer.

Download

Presentations

• 2010-07-06: ACISP 2010. Presented by James Birkett (PDF slides)

BibTeX

@inproceedings{ACISP:BirSte10,
 	Author = {James Birkett and Douglas Stebila},
 	Booktitle = {Proc. 15th Australasian Conference on Information Security and Privacy (ACISP) 2010},
 	Doi = {10.1007/978-3-642-14081-5\_18},
 	Editor = {Ron Steinfeld and Philip Hawkes},
 	Month = {July},
 	Pages = {282--299},
 	Publisher = {Springer},
 	Series = {LNCS},
 	Title = {Predicate-based key exchange},
 	Volume = {6168},
 	Year = {2010}
 }

Funding

• Australian Research Council (ARC) Discovery Project grant DP0666065