Design a key establishment protocol that will allow a Mutually Agreed Session key (Kabc) to be established between three entities A, B and C. This key can then be used to secure a chat between the three entities. I want you to develop your own design based on the conditions below. Note: The session key should NOT be known to the Chat Server (S) and the Chat Server (S) can only forward the encrypted messages to A, B and C and S cannot read the messages, i.e. End to end encryption/privacy is to be used between the chat parties A, B and C. The secure chat between entities A, B and C must use the Chat Server (S) and session key Kabc as below: i.e. A, B and C Do NOT communicate directly and must exchange messages through the Server S. The following conditions apply to your protocol design. 1. A, B and C Never communicate directly. Each entity (A, B, C and S) have a Public Key Certificate, ie. CA<>, CA<>, CA<> and CA<>. The Chat Server, S, has access to all Entity Certificates that use its service and can provide these Certificate to its service users if requested to do so. Each step in establishing the Session key (Kabc) must provide an Authenticated Integrity check of the data transferred. You must show both sides of this in your protocol design and description, i.e. its generation and how it is checked. Each Entity must Authenticate itself to the Server S before it is allowed to use its service. For each of the steps where you use any of CIA (Confidentiality, Integrity or Authentication) please state the algorithm you used to perform that function. You must provide a legend to describe your notation and a full description of each step in the protocol that is used to establish the shared key Kabc.
Design a key establishment protocol that will allow a Mutually Agreed Session key (Kabc) to be established between
three entities A, B and C. This key can then be used to secure a chat between the three entities. I want you to develop your own design based on the conditions below.
Note: The session key should NOT be known to the Chat Server (S) and the Chat Server (S) can only forward the encrypted messages to A, B and C and S cannot read the messages,
i.e. End to end encryption/privacy is to be used between the chat parties A, B and C.
The secure chat between entities A, B and C must use the Chat Server (S) and session key Kabc as below: i.e. A, B and C Do NOT communicate directly and must exchange messages through the Server S.
The following conditions apply to your protocol design.
1. A, B and C Never communicate directly.
-
Each entity (A, B, C and S) have a Public Key Certificate, ie. CA<<A>>, CA<<B>>, CA<<C>> and CA<<S>>.
-
The Chat Server, S, has access to all Entity Certificates that use its service and can provide these Certificate to its service users if requested to do so.
-
Each step in establishing the Session key (Kabc) must provide an Authenticated Integrity check of the data transferred. You must show both sides of this in your protocol design and description, i.e. its generation and how it is checked.
-
Each Entity must Authenticate itself to the Server S before it is allowed to use its service.
-
For each of the steps where you use any of CIA (Confidentiality, Integrity or Authentication) please state the
algorithm you used to perform that function.
You must provide a legend to describe your notation and a full description of each step in the protocol that is used to establish the shared key Kabc.
Step by step
Solved in 3 steps with 1 images