文摘
Authenticated key agreement protocol is a useful primitive which allows two or more entities to securely establish a shared secret key for their communications over an insecure public network. Recently, Zhang proposed an efficient certificateless one-pass and two-party authenticated key agreement protocol. The proposed protocol meets all the security requirements that a one-pass and two-party authenticated key agreement protocol should satisfy. To achieve the standard key-compromise impersonation security, Zhang provided a general idea to convert the proposed protocol to the one with key-compromise impersonation property. However, Zhang may omit some detailed inputs in the description of the extended certificateless one-pass and two-party authenticated key agreement protocol. We show that the extended protocol achieves the standard key-compromise impersonation security if and only if some public inputs are well included.