PASSWORD BASED KEY DISTRIBUTING METHOD USING PASSWORD-HARDENING PROTOCOL

摘要

PURPOSE: A password based key distributing method using a password-hardening protocol is provided to remove the limitation for making a server store a verifier privately by using a password verifier blinded with a blinding factor of a client and the server, and to exchange the user certification and the session key by transmitting a message from the client once. CONSTITUTION: The client transmits a name or an address of the client, and a random integer to the server(101). The server calculates the verifier for the client, and transmits the name or the address of the server and the random integer to the client(103). The client calculates and uses the public key of the server(105). The client calculates and transmits the values for certifying a user and generating the session key to the server(107). The server calculates the session key after verifying the values for certifying the user and generating the session key(109).