@inbook {IOPORT.05374476,
    author       = {Kunz-Jacques, S\'ebastien and Pointcheval, David},
    title        = {A new key exchange protocol based on MQV assuming public computations.},
    year         = {2006},
    booktitle    = {Security and cryptography for networks. 5th international conference, SCN 2006, Maiori, Italy, September 6--8, 2006. Proceedings},
    isbn         = {978-3-540-38080-1},
    pages        = {186-200},
    publisher    = {Berlin: Springer},
    doi          = {10.1007/11832072_13},
    abstract     = {Summary: Designing authenticated key exchange algorithms is a problem well understood in cryptography: there are established security models, and proposals proved secure in these models. However, models currently used assume that a honest entity involved in a key exchange is trusted as a whole. In many practical contexts, the entity is divided in an authentication device storing a private key and having low computing power, and a computing device, that performs part of the computations required by protocol runs. The computing device might be a PC connected to the Internet, and the authenticating device a smart card. In that case as well in many others, a compromise of the computing device is to be expected. We therefore propose a variant of the MQV and HMQV key exchange protocols secure in that context, unlike the original protocols. The security claim is supported by a proof in a model derived from the Canetti-Krawczyk one, which takes into account more general rogue behaviours of the computing device.},
    identifier   = {05374476},
}