{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,3]],"date-time":"2026-05-03T11:01:21Z","timestamp":1777806081515,"version":"3.51.4"},"reference-count":43,"publisher":"SAGE Publications","issue":"2","license":[{"start":{"date-parts":[[2019,1,4]],"date-time":"2019-01-04T00:00:00Z","timestamp":1546560000000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/journals.sagepub.com\/page\/policies\/text-and-data-mining-license"}],"content-domain":{"domain":["journals.sagepub.com"],"crossmark-restriction":true},"short-container-title":["Journal of Computer Security"],"published-print":{"date-parts":[[2019,3,29]]},"abstract":"<jats:p>We introduce the first deniable attribute-based key exchange (DABKE) framework that is resilient to impersonation attacks. We define the formal security models for DABKE framework, and propose a generic compiler that converts any attribute-based key exchanges into deniable ones. We prove that it can achieve session key security and user privacy in the standard model, and strong deniability in the simulation-based paradigm. In particular, the proposed generic compiler ensures: 1) a dishonest user cannot impersonate other user\u2019s session participation in conversations since implicit authentication is used among authorized users; 2) an authorized user can plausibly deny his\/her participation after secure conversations with others; 3) the strongest form of deniability is achieved using one-round communication between two authorized users.<\/jats:p>","DOI":"10.3233\/jcs-181201","type":"journal-article","created":{"date-parts":[[2019,1,4]],"date-time":"2019-01-04T10:38:10Z","timestamp":1546598290000},"page":"259-275","update-policy":"https:\/\/doi.org\/10.1177\/sage-journals-update-policy","source":"Crossref","is-referenced-by-count":1,"title":["DABKE: Secure deniable attribute-based key exchange framework"],"prefix":"10.1177","volume":"27","author":[{"given":"Yangguang","family":"Tian","sequence":"first","affiliation":[{"name":"School of Information Systems, Singapore Management University, Singapore. E-mails:\u00a0,\u00a0,\u00a0"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yingjiu","family":"Li","sequence":"additional","affiliation":[{"name":"School of Information Systems, Singapore Management University, Singapore. E-mails:\u00a0,\u00a0,\u00a0"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Guomin","family":"Yang","sequence":"additional","affiliation":[{"name":"School of Computing and Information Technology, University of Wollongong, NSW, Australia. E-mails:\u00a0,\u00a0"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Willy","family":"Susilo","sequence":"additional","affiliation":[{"name":"School of Computing and Information Technology, University of Wollongong, NSW, Australia. E-mails:\u00a0,\u00a0"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yi","family":"Mu","sequence":"additional","affiliation":[{"name":"Fujian Provincial Key Laboratory of Network Security and Cryptology, College of Mathematics and Informatics, Fujian Normal University, Fuzhou, China. E-mail:\u00a0"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hui","family":"Cui","sequence":"additional","affiliation":[{"name":"Computer Science and Software Engineering, RMIT University, Victoria, Australia. E-mail:\u00a0"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yinghui","family":"Zhang","sequence":"additional","affiliation":[{"name":"School of Information Systems, Singapore Management University, Singapore. E-mails:\u00a0,\u00a0,\u00a0"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"179","published-online":{"date-parts":[[2019,1,4]]},"reference":[{"key":"ref001","doi-asserted-by":"crossref","unstructured":"M.\u00a0Bellare, R.\u00a0Canetti and H.\u00a0Krawczyk, A modular approach to the design and analysis of authentication and key exchange protocols (extended abstract), in: STOC, 1998, pp.\u00a0419\u2013428.","DOI":"10.1145\/276698.276854"},{"key":"ref002","doi-asserted-by":"crossref","unstructured":"M.\u00a0Bellare, D.\u00a0Pointcheval and P.\u00a0Rogaway, Authenticated key exchange secure against dictionary attacks, in: EUROCRYPT, 2000, pp.\u00a0139\u2013155.","DOI":"10.1007\/3-540-45539-6_11"},{"key":"ref003","doi-asserted-by":"crossref","unstructured":"M.\u00a0Bellare and P.\u00a0Rogaway, Entity authentication and key distribution, in: CRYPTO, 1993, pp.\u00a0232\u2013249.","DOI":"10.1007\/3-540-48329-2_21"},{"key":"ref004","doi-asserted-by":"crossref","unstructured":"M.\u00a0Bellare and P.\u00a0Rogaway, Provably secure session key distribution: The three party case, in: STOC, 1995, pp.\u00a057\u201366.","DOI":"10.1145\/225058.225084"},{"key":"ref005","doi-asserted-by":"crossref","unstructured":"J.\u00a0Bethencourt, A.\u00a0Sahai and B.\u00a0Waters, Ciphertext-policy attribute-based encryption, in: 2007 IEEE Symposium on Security and Privacy (S&P), 2007, pp.\u00a0321\u2013334. doi:10.1109\/SP.2007.11.","DOI":"10.1109\/SP.2007.11"},{"key":"ref006","doi-asserted-by":"crossref","unstructured":"N.\u00a0Borisov, I.\u00a0Goldberg and E.\u00a0Brewer, Off-the-record communication, or, why not to use PGP, in: Proceedings of the 2004 ACM Workshop on Privacy in the Electronic Society, 2004, pp.\u00a077\u201384.","DOI":"10.1145\/1029179.1029200"},{"key":"ref007","doi-asserted-by":"crossref","unstructured":"M.\u00a0Burmester and Y.\u00a0Desmedt, Efficient and secure conference-key distribution, in: Security Protocols, International Workshop, Proceedings, Cambridge, United Kingdom, April 10\u201312, 1996, 1996, pp.\u00a0119\u2013129.","DOI":"10.1007\/3-540-62494-5_12"},{"key":"ref008","doi-asserted-by":"crossref","unstructured":"R.\u00a0Canetti and H.\u00a0Krawczyk, Analysis of key-exchange protocols and their use for building secure channels, in: EUROCRYPT, 2001, pp.\u00a0453\u2013474.","DOI":"10.1007\/3-540-44987-6_28"},{"key":"ref009","unstructured":"C.J.F.\u00a0Cremers and M.\u00a0Feltz, One-round strongly secure key exchange with perfect forward secrecy and deniability, IACR Cryptology ePrint Archive 2011 (2011), 300."},{"key":"ref010","doi-asserted-by":"crossref","unstructured":"M.\u00a0Di Raimondo and R.\u00a0Gennaro, New approaches for deniable authentication, in: ACM, CCS, 2005, pp.\u00a0112\u2013121.","DOI":"10.1145\/1102120.1102137"},{"key":"ref011","doi-asserted-by":"crossref","unstructured":"M.\u00a0Di Raimondo, R.\u00a0Gennaro and H.\u00a0Krawczyk, Deniable authentication and key exchange, in: ACM, CCS, 2006, pp.\u00a0400\u2013409.","DOI":"10.1145\/1180405.1180454"},{"key":"ref012","doi-asserted-by":"crossref","unstructured":"Y.\u00a0Dodis, J.\u00a0Katz, A.D.\u00a0Smith and S.\u00a0Walfish, Composability and on-line deniability of authentication, in: TCC, 2009, pp.\u00a0146\u2013162.","DOI":"10.1007\/978-3-642-00457-5_10"},{"key":"ref013","doi-asserted-by":"publisher","DOI":"10.1145\/1039488.1039489"},{"key":"ref014","unstructured":"S.D.\u00a0Galbraith, Authenticated key exchange for SIDH, 2018."},{"key":"ref015","doi-asserted-by":"crossref","unstructured":"M.C.\u00a0Gorantla, C.\u00a0Boyd and J.M.G.\u00a0Nieto, Attribute-based authenticated key exchange, in: ACISP, 2010, pp.\u00a0300\u2013317.","DOI":"10.1007\/978-3-642-14081-5_19"},{"key":"ref016","doi-asserted-by":"crossref","unstructured":"V.\u00a0Goyal, O.\u00a0Pandey, A.\u00a0Sahai and B.\u00a0Waters, Attribute-based encryption for fine-grained access control of encrypted data, in: ACM, CCS, 2006, pp.\u00a089\u201398.","DOI":"10.1145\/1180405.1180418"},{"key":"ref017","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-85230-8_4"},{"key":"ref018","doi-asserted-by":"crossref","unstructured":"J.\u00a0Katz and J.S.\u00a0Shin, Modeling insider attacks on group key-exchange protocols, in: ACM, CCS, 2005, pp.\u00a0180\u2013189.","DOI":"10.1145\/1102120.1102146"},{"key":"ref019","doi-asserted-by":"crossref","unstructured":"J.\u00a0Katz and M.\u00a0Yung, Scalable protocols for authenticated group key exchange, in: CRYPTO, 2003, pp.\u00a0110\u2013125.","DOI":"10.1007\/978-3-540-45146-4_7"},{"key":"ref020","doi-asserted-by":"crossref","unstructured":"V.\u00a0Kolesnikov, H.\u00a0Krawczyk, Y.\u00a0Lindell, A.\u00a0Malozemoff and T.\u00a0Rabin, Attribute-based key exchange with general policies, in: ACM, CCS, 2016, pp.\u00a01451\u20131463.","DOI":"10.1145\/2976749.2978359"},{"key":"ref021","doi-asserted-by":"crossref","unstructured":"H.\u00a0Krawczyk, HMQV: A high-performance secure Diffie-Hellman protocol, in: CRYPTO, 2005, pp.\u00a0546\u2013566.","DOI":"10.1007\/11535218_33"},{"key":"ref022","doi-asserted-by":"crossref","unstructured":"B.A.\u00a0LaMacchia, K.E.\u00a0Lauter and A.\u00a0Mityagin, Stronger security of authenticated key exchange, in: Provable Security, 2007, pp.\u00a01\u201316.","DOI":"10.1007\/978-3-540-75670-5_1"},{"key":"ref023","doi-asserted-by":"publisher","DOI":"10.1023\/A:1022595222606"},{"key":"ref024","doi-asserted-by":"crossref","unstructured":"A.B.\u00a0Lewko, T.\u00a0Okamoto, A.\u00a0Sahai, K.\u00a0Takashima and B.\u00a0Waters, Fully secure functional encryption: Attribute-based encryption and (hierarchical) inner product encryption, in: EUROCRYPT, 2010, pp.\u00a062\u201391.","DOI":"10.1007\/978-3-642-13190-5_4"},{"issue":"1","key":"ref025","first-page":"47","volume":"1","author":"Menezes A.","year":"2007","journal-title":"Mathematical Cryptology JMC"},{"key":"ref026","first-page":"474","author":"Okamoto T.","year":"2007","journal-title":"ASIACRYPT"},{"key":"ref027","doi-asserted-by":"crossref","unstructured":"T.\u00a0Okamoto and K.\u00a0Takashima, Fully secure functional encryption with general relations from the decisional linear assumption, in: CRYPTO, 2010, pp.\u00a0191\u2013208.","DOI":"10.1007\/978-3-642-14623-7_11"},{"key":"ref028","unstructured":"Open Whisper Systems."},{"key":"ref029","doi-asserted-by":"crossref","unstructured":"R.\u00a0Pass, On deniability in the common reference string and random oracle model, in: Crypto, Vol.\u00a03, 2003, pp.\u00a0316\u2013337.","DOI":"10.1007\/978-3-540-45146-4_19"},{"key":"ref030","doi-asserted-by":"crossref","unstructured":"A.\u00a0Sahai and B.\u00a0Waters, Fuzzy identity-based encryption, in: Advances in Cryptology\u00a0\u2013 EUROCRYPT, 2005, pp.\u00a0457\u2013473.","DOI":"10.1007\/11426639_27"},{"key":"ref031","doi-asserted-by":"crossref","unstructured":"S.\u00a0Sch\u00e4ge, TOPAS: 2-pass key exchange with full perfect forward secrecy and optimal communication complexity, in: ACM, CCS, 2015, pp.\u00a01224\u20131235.","DOI":"10.1145\/2810103.2813683"},{"key":"ref032","doi-asserted-by":"crossref","unstructured":"Y.\u00a0Tian, Y.\u00a0Li, Y.\u00a0Zhang, N.\u00a0Li, G.\u00a0Yang and Y.\u00a0Yu, DSH: Deniable secret handshake framework, in: ISPEC, 2018, pp.\u00a0341\u2013353.","DOI":"10.1007\/978-3-319-99807-7_21"},{"key":"ref033","doi-asserted-by":"crossref","unstructured":"Y.\u00a0Tian, G.\u00a0Yang, Y.\u00a0Mu, K.\u00a0Liang and Y.\u00a0Yu, One-round attribute-based key exchange in the multi-party setting, in: Provable Security, 2016, pp.\u00a0227\u2013243.","DOI":"10.1007\/978-3-319-47422-9_13"},{"key":"ref034","doi-asserted-by":"crossref","unstructured":"Y.\u00a0Tian, S.\u00a0Zhang, G.\u00a0Yang, Y.\u00a0Mu and Y.\u00a0Yu, Privacy-preserving k-time authenticated secret handshakes, in: ACISP, 2017, pp.\u00a0281\u2013300.","DOI":"10.1007\/978-3-319-59870-3_16"},{"key":"ref035","doi-asserted-by":"crossref","unstructured":"N.\u00a0Unger and I.\u00a0Goldberg, Deniable key exchanges for secure messaging, in: ACM, CCS, 2015, pp.\u00a01211\u20131223.","DOI":"10.1145\/2810103.2813616"},{"key":"ref036","doi-asserted-by":"publisher","DOI":"10.1515\/popets-2018-0003"},{"key":"ref037","doi-asserted-by":"publisher","DOI":"10.1007\/s10623-007-9159-1"},{"key":"ref038","unstructured":"S.\u00a0Walfish, Enhanced security models for network protocols, PhD thesis, New York University, 2008."},{"key":"ref039","doi-asserted-by":"crossref","unstructured":"B.\u00a0Waters, Ciphertext-policy attribute-based encryption: An expressive, efficient, and provably secure realization, in: PKC, 2011, pp.\u00a053\u201370.","DOI":"10.1007\/978-3-642-19379-8_4"},{"key":"ref040","doi-asserted-by":"crossref","unstructured":"A.C.C.\u00a0Yao and Y.\u00a0Zhao, OAKE: a new family of implicitly authenticated Diffie\u2013Hellman protocols, in: ACM, CCS, 2013, pp.\u00a01113\u20131128.","DOI":"10.1145\/2508859.2516695"},{"key":"ref041","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2013.2293457"},{"key":"ref042","doi-asserted-by":"crossref","unstructured":"K.\u00a0Yoneyama, Strongly secure two-pass attribute-based authenticated key exchange, in: Pairing-Based Cryptography, 2010, pp.\u00a0147\u2013166.","DOI":"10.1007\/978-3-642-17455-1_10"},{"key":"ref043","doi-asserted-by":"crossref","unstructured":"M.\u00a0Yung and Y.\u00a0Zhao, Interactive zero-knowledge with restricted random oracles, in: TCC, 2006, pp.\u00a021\u201340.","DOI":"10.1007\/11681878_2"}],"container-title":["Journal of Computer Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/journals.sagepub.com\/doi\/pdf\/10.3233\/JCS-181201","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/journals.sagepub.com\/doi\/full-xml\/10.3233\/JCS-181201","content-type":"application\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/journals.sagepub.com\/doi\/pdf\/10.3233\/JCS-181201","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,4,29]],"date-time":"2026-04-29T20:45:17Z","timestamp":1777495517000},"score":1,"resource":{"primary":{"URL":"https:\/\/journals.sagepub.com\/doi\/10.3233\/JCS-181201"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,1,4]]},"references-count":43,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2019,3,29]]}},"alternative-id":["10.3233\/JCS-181201"],"URL":"https:\/\/doi.org\/10.3233\/jcs-181201","relation":{},"ISSN":["0926-227X","1875-8924"],"issn-type":[{"value":"0926-227X","type":"print"},{"value":"1875-8924","type":"electronic"}],"subject":[],"published":{"date-parts":[[2019,1,4]]}}}