Group Key Establishment: Adding Perfect Forward Secrecy at the Cost of One Round
A compiler is presented which, in the random oracle model, allows to add perfect forward secrecy to any secure authenticated group key establishment protocol P which has at least one round. The compiler does not modify the session identifier and does not impose changes on the underlying public key infrastructure. Building on a secure unauthenticated 1-round 2-party key establishment Q with perfect forward secrecy as auxiliary input, P is transformed into an authenticated group key establishment protocol with perfect forward secrecy and with one more round than P.
Keywordsprotocol compiler group key establishment forward secrecy
Unable to display preview. Download preview PDF.