Cryptanalysis and improvements on Sun et al.’s e-mail protocols with perfect forward secrecy

doi:10.3778/j.issn.1002-8331.2008.21.018

Computer Engineering and Applications ›› 2008, Vol. 44 ›› Issue (21): 69-71.DOI: 10.3778/j.issn.1002-8331.2008.21.018

• 网络、通信、安全 • Previous Articles Next Articles

Cryptanalysis and improvements on Sun et al.’s e-mail protocols with perfect forward secrecy

SU Ren-wang

College of Statistics and Mathematics，Zhejiang Gongshang University，Hangzhou 310035，China

Received:2008-01-28 Revised:2008-03-18 Online:2008-07-21 Published:2008-07-21
Contact: SU Ren-wang

Sun等两个完美前向安全E-mail协议分析与改进

苏仁旺

浙江工商大学统计与数学学院，杭州 310035

通讯作者: 苏仁旺

Abstract

Abstract: In 2005，Sun et al have proposed two secure e-mail protocols with perfect forward secrecy.Although these two protocols seem to be secure from the protective efficiency of the short-term key，yet neither of them has considered the authentication of the delivering ciphertext.If an outside attacker intercepts and modifies a delivering ciphertext，the e-mail receiver will have to accept a false plaintext.To overcome this flaw，in this paper we will make improvements on Sun et al.’s protocols such that the improved protocols have authentication，better security and practicality.

Key words: perfect forward secrecy, confidentiality, protocol, authentication, e-mail

摘要： 2005年，Sun等提出了两个完美前向安全的E-mail协议，尽管从短密钥保护的有效性来看这两个协议是安全的，但它们都不能提供密文的认证性，如果一个主动攻击者拦截或修改密文，则E-mail接受者会收到一个错误的明文。为了克服此缺点，对此两个协议作了改进，使得改进后的协议具有认证性，从而有更好的安全性和实用性。

关键词: 完美前向安全, 机密性, 协议, 认证性, E-mail

SU Ren-wang. Cryptanalysis and improvements on Sun et al.’s e-mail protocols with perfect forward secrecy[J]. Computer Engineering and Applications, 2008, 44(21): 69-71.

苏仁旺. Sun等两个完美前向安全E-mail协议分析与改进[J]. 计算机工程与应用, 2008, 44(21): 69-71.

[1]	SUN Zeyu, XU Chen, SU Yanchao, LI Chuanfeng, NIE Yalin. CCRP：Cross-Layer-Sensing Clustering Routing Protocol in Fog Computing [J]. Computer Engineering and Applications, 2021, 57(9): 109-117.
[2]	ZHAO Jing, WANG Ruwu, ZHOU Hao. Simulation Research of MQTT Protocol Based on NS-3 [J]. Computer Engineering and Applications, 2021, 57(23): 137-145.
[3]	ZOU Jianwen, ZHAO Bo, LI Xiang, LIU Yifan, LI Jiayue. tPUF-Based Security Access Scheme for IoT Devices [J]. Computer Engineering and Applications, 2021, 57(2): 119-126.
[4]	FANG Kanfei, LIN Zhitin, ZHAO Jianzhong, LI Zhi, BI Liqiang. Design of New BMC Decoding Circuit for USB PD3.0 Protocol [J]. Computer Engineering and Applications, 2021, 57(1): 77-83.
[5]	CHEN Feihong, ZHANG Feng, CHEN Junning, WU Xiulong. Lightweight RFID Authentication Protocol Based on RRAM PUF [J]. Computer Engineering and Applications, 2021, 57(1): 141-149.
[6]	ZHU Zhishen，LING Jie，LIN Peng. Data Integrity Checking Technology of Industrial Control System Based on Covert Channel [J]. Computer Engineering and Applications, 2020, 56(9): 125-130.
[7]	WU Chutian, CHEN Yongle, CHEN Junjie. Cross-Protocol Anomaly Detection Algorithm Based on HMM [J]. Computer Engineering and Applications, 2020, 56(8): 81-86.
[8]	GONG Bencan, ZHOU Feng, CHEN Peng, REN Dong. Routing Protocol Based on Path Quality in Wireless Sensor Networks [J]. Computer Engineering and Applications, 2020, 56(6): 99-104.
[9]	HONG Zheng, GONG Qiyuan, FENG Wenbo, LI Yihao. Unknown Application Layer Protocol Recognition Based on Adaptive Clustering [J]. Computer Engineering and Applications, 2020, 56(5): 109-117.
[10]	ZHANG Hongze, HONG Zheng, ZHOU Shengli, FENG Wenbo. Fuzzing Optimization Method Based on Protocol State Migration Traversal [J]. Computer Engineering and Applications, 2020, 56(4): 82-91.
[11]	MEI Songqing, DENG Xiaoru. Ultra-Lightweight Mobile RFID Authentication Protocol for Bit Replacement Operations [J]. Computer Engineering and Applications, 2020, 56(3): 100-105.
[12]	XU Guoyu, XU Gang, JIANG Tao, HU Haitao. Research on Quantitative Analysis of Authentication Mechanism Performance for Space-Ground Integrated Information Network [J]. Computer Engineering and Applications, 2020, 56(21): 108-114.
[13]	YANG Haoyun, WANG Junfeng, LIU Jiayong, TANG Zhangguo. Research and Implementation of Covert Channel of SSL Protocol [J]. Computer Engineering and Applications, 2020, 56(20): 67-72.
[14]	PENG Chunyan, DU Xiujuan. Secure Routing Protocol Based on Depth in Underwater Acoustic Sensor Networks [J]. Computer Engineering and Applications, 2020, 56(2): 76-81.
[15]	MA Yuanyuan, LIU Zhoubin, WANG Zixiang. Research on Heterogeneous Terminal Security Access Technology in Edge Computing Scenario [J]. Computer Engineering and Applications, 2020, 56(17): 115-120.

Cryptanalysis and improvements on Sun et al.’s e-mail protocols with perfect forward secrecy

Sun等两个完美前向安全E-mail协议分析与改进

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics