Entity authentication and key distribution

M. Bellare, P. Rogaway

We provide the first formal treatment of entity authentication and
authenticated key distribution appropriate to the distributed
environment. Addressed in detail are the problems of mutual
authentication and authenticated key exchange for the symmetric,
two-party setting. For each we present a definition, protocol,
and proof that the protocol meets its goal, assuming only the
existence of a pseudorandom function.