A New Delegated Authentication Protocol based on PRE

Anass Sbai; Cyril Drocourt; Gilles Dequen

doi:10.5220/0010542404680478

A New Delegated Authentication Protocol based on PRE

Anass Sbai, Cyril Drocourt, Gilles Dequen

2021

Abstract

New trends highlight the use of delegated authentication solutions where identity providers do not need to synchronize user credentials with services. It is a facility for service providers and also for users who do not have to create multiple accounts. Different solutions for single sign-on and delegated authentication exist. Most of these solutions require many exchanges between the different actors involved in the protocol, an additional TLS layer and/or the use of signature schemes which, in terms of security, rely on random oracles for reasons of efficiency. In this article, we recall the concept of the best known solutions (e.g. Kerberos, OpenID, ...), briefly discuss the possibility of using one-way accumulators and define the Proxy Re-Encryption (PRE). Next, we propose a new delegated authentication protocol that allows users to authenticate anonymously on insecure networks and therefore asynchronously without direct communication between identity providers and service providers while minimizing the number of interactions. We based our solution on the use of PRE which could be instantiated by schemes based on standard assumptions. We first show how our protocol behaves against different types of attacks. Then in a more formal manner, we present the proof of security based on an adaptation of BAN logic method that supports the use of PRE functionalities.

Download

Paper Citation

in Harvard Style

Sbai A., Drocourt C. and Dequen G. (2021). A New Delegated Authentication Protocol based on PRE. In Proceedings of the 18th International Conference on Security and Cryptography - Volume 1: SECRYPT, ISBN 978-989-758-524-1, pages 468-478. DOI: 10.5220/0010542404680478

in Bibtex Style

@conference{secrypt21,
author={Anass Sbai and Cyril Drocourt and Gilles Dequen},
title={A New Delegated Authentication Protocol based on PRE},
booktitle={Proceedings of the 18th International Conference on Security and Cryptography - Volume 1: SECRYPT,},
year={2021},
pages={468-478},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010542404680478},
isbn={978-989-758-524-1},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 18th International Conference on Security and Cryptography - Volume 1: SECRYPT,
TI - A New Delegated Authentication Protocol based on PRE
SN - 978-989-758-524-1
AU - Sbai A.
AU - Drocourt C.
AU - Dequen G.
PY - 2021
SP - 468
EP - 478
DO - 10.5220/0010542404680478