On the Importance of Public-Key Validation in the Mqv and Hmqv Key Agreement Protocols
Loading...
Files
Date
Authors
Ustaoğlu, Berkant
Journal Title
Journal ISSN
Volume Title
Publisher
Open Access Color
Green Open Access
Yes
OpenAIRE Downloads
OpenAIRE Views
Publicly Funded
No
BIP! Indicators
Impulse
Top 10%
Influence
Top 10%
Popularity
Top 10%
Abstract
HMQV is a hashed variant of the MQV key agreement protocol proposed by Krawczyk at CRYPTO 2005. In this paper, we present some attacks on HMQV and MQV that are successful if public keys are not properly validated. In particular, we present an attack on the two-pass HMQV protocol that does not require knowledge of the victim's ephemeral private keys. The attacks illustrate the importance of performing some form of public-key validation in Diffie-Hellman key agreement protocols, and furthermore highlight the dangers of relying on security proofs for discrete-logarithm protocols where a concrete representation for the underlying group is not specified.
Description
7th International Conference on Cryptology in India, Calcutta, INDIA
Keywords
Key agreement protocols, HMQV, MQV, HMQV, MQV, Key agreement protocols
Fields of Science
0202 electrical engineering, electronic engineering, information engineering, 0102 computer and information sciences, 02 engineering and technology, 01 natural sciences
Citation
Menezes, A., and Ustaoğlu, B. (2006). On the importance of public-key validation in the MQV and HMQV key agreement protocols. Lecture Notes in Computer Science, 4329, 133-147. doi:10.1007/11941378_11
WoS Q
Scopus Q
OpenCitations Citation Count
36
Volume
4329
Issue
Start Page
133
End Page
147
PlumX Metrics
Citations
CrossRef : 29
Scopus : 44
Captures
Mendeley Readers : 27
Web of Science™ Citations
34
checked on Apr 27, 2026
Page Views
17651
checked on Apr 27, 2026
Downloads
406
checked on Apr 27, 2026
Google Scholar™
