Password-based authentication: A brief overview

Share to Google+Share to FacebookShare to TwitterShare to LinkedIn
Scientific Seminar - Los Altos, CA
August 13, 2014
Key exchange is one of the most useful tools in cryptography
Innovation Seminar In Los Altos Technicolor Lab


Open to the public. 

Location: Technicolor, 175 S San Antonio Road, Los Altos, CA 94022

MapGoogle Maps (opens in new window)

Date: Wednesday August, 13th 2014 at 11:00 AM – 12:00 PM PT


SpeakerMichel Abdalla, ENS Paris

Title: Password-based authentication: A brief overview
Key exchange is one of the most useful tools in cryptography, allowing users to establish a common secret which they can then use in applications to achieve both privacy and authenticity.  Among the examples of key exchange protocols, the most classical one is the Diffie-Hellman protocol, which allows any two parties to establish a common secret even in the presence of a passive adversary, which may be eavesdropping on the communication.
To achieve security in the presence of active adversaries, several means of authentication have been proposed, most of them relying on either the existence of a public-key infrastructure (PKI) or the availability of pair-wise high-entropy secret keys. Unfortunately, due to the size of the secrets used to authenticate, the parties in this case have to either store their secrets on a secure device or use it from one machine only.
One way to avoid this problem is to rely on short and easily memorizable secrets (a.k.a. passwords) for authentication.In this talk, I will consider the problem of designing authenticated key exchange protocols in the password-based setting. In particular, I will discuss the different security goals that one can consider as well as different ways of realizing these goals. Finally, I will also provide a brief overview of the state of the art and discuss some of the issues regarding the implementation of these protocols.
Michel Abdalla received the PhD degree in computer science from the University of California at San Diego (UCSD), La Jolla, California.
He is a staff researcher with the French National Center for Scientific Research and a member of the cryptography team in the Computer Science Department at École Normale Supérieure, France.
He has served on the program committee of numerous international conferences, including Crypto and Eurocrypt, and was program chair for SCN 2014, CANS 2013, PAIRING 2012, LATINCRYPT 2010, and ACNS 2009.
He currently serves on the editorial boards of IEEE Transactions on Information Forensics and Security and IET Information Security and on the steering committees of LATINCRYPT and PAIRING.
His present research focuses on the design of efficient and provably-secure cryptographic protocols
For more information about Technicolor Seminar Series: