Fast generators for the Diffie-Hellman key agreement protocol and   malicious standards

Boaz Tsaban

arXiv:cs/0505082·cs.CR·August 2, 2010

Fast generators for the Diffie-Hellman key agreement protocol and malicious standards

Boaz Tsaban

PDF

Open Access

TL;DR

This paper investigates the security implications of using fast generators in the Diffie-Hellman protocol, showing they are generally secure but could be exploited to create malicious standards with hidden trapdoors.

Contribution

It demonstrates that fast generators are mostly secure and reveals potential risks of malicious authorities embedding trapdoors in standards.

Findings

01

Fast generators offer comparable security to random generators.

02

Potential for malicious standards with hidden trapdoors exists.

03

Using fast generators can lead to vulnerabilities if exploited.

Abstract

The Diffie-Hellman key agreement protocol is based on taking large powers of a generator of a prime-order cyclic group. Some generators allow faster exponentiation. We show that to a large extent, using the fast generators is as secure as using a randomly chosen generator. On the other hand, we show that if there is some case in which fast generators are less secure, then this could be used by a malicious authority to generate a standard for the Diffie-Hellman key agreement protocol which has a hidden trapdoor.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsSecurity in Wireless Sensor Networks · Advanced Authentication Protocols Security