Parallel and concurrent security of the HB and HB+ protocols

TitleParallel and concurrent security of the HB and HB+ protocols
Publication TypeJournal Articles
Year of Publication2010
AuthorsKatz J, Shin JS, Smith A
JournalJournal of cryptology
Volume23
Issue3
Pagination402 - 421
Date Published2010///
Abstract

Hopper and Blum (Asiacrypt 2001) and Juels and Weis (Crypto 2005) recently proposed two shared-key authentication protocols—HB and HB+, respectively—whose extremely low computational cost makes them attractive for low-cost devices such as radio-frequency identification (RFID) tags. The security of these protocols is based on the conjectured hardness of the “learning parity with noise” (LPN) problem, which is equivalent to the problem of decoding random binary linear codes. The HB protocol is proven secure against a passive (eavesdropping) adversary, while the HB+ protocol is proven secure against active attacks.

DOI10.1007/s00145-010-9061-2