Authenticating an ephemeral Diffie-Hellman using a trusted third party

摘要

Authentication of parties through a trusted intermediary is described. The standard Ottway-Rees authentication protocol is modified to provide authentication between A and B using intermediary T such that T serves only as an authenticator, and does not participate in the generation of the key shared between A and B.

主权项

1. A non-transitory computer readable medium comprising instructions which, when executed by one or more hardware processors, causes performance of operations comprising:
receiving, by a first device from a second device, a first message that comprises a first public value of the second device, the first public value being encrypted with a first key; transmitting, by the first device to a trusted third party, a second message that comprises the first message and a second public value, the second message being encrypted with a second key; receiving, by the first device, a third message encrypted with the second key, the third message comprising (a) a fourth message comprising the second public value encrypted with the first key and (b) the first public value; transmitting, by the first device to the second device, the fourth message.