Abstract:  For therequirements of password-authenticated key exchange protocol, a password-authenticated tripartite key exchange protocol is proposed. The proposed protocol is designed with contents of password verification of clients’ stored in the server, bilinear pairings, ID-based encryption and so on. Security and efficiency of the proposed protocol are analyzed. It is showed in the analysis that the proposed protocol has security requirements of the password-authenticated tripartite key exchange protocol, but also has better efficiency.

Key words: password-authenticated, tripartite key exchange, ID-based encryption, discrete logarithm, dictionary attack

摘要： 对于口令认证的密钥交换协议的安全性要求，提出一种口令认证的三方密钥交换协议，利用服务器存储客户端口令的验证值、双线性对与基于身份加密算法等内容进行协议的设计，并对协议进行了安全性和效率的两个方面的分析。分析表明，所提出的协议具有口令认证的三方密钥交换协议的安全属性要求，也具有较好的效率。

关键词: 口令认证, 三方密钥交换, 基于身份加密算法, 离散对数, 字典攻击