Derandomized PACE with Mutual Authentication
                    Adam Bobowski and Miroslaw Kutylowski
      
      Department of Computer Science, Wroclaw University of Science and Technology
              adam.bobowski@pwr.edu.pl, miroslaw.kutylowski@pwr.wroc.pl

Abstract. 
We present a derandomized version of the ICAO protocol PACE --
a PAKE protocol (password authenticated key exchange) used for identity docu-
ments including biometric passports and future European personal ID documents.
The modification aims to remove necessity of implementing random number gen-
erator and thereby reduce the cost of the chip and its certification. By a side effect
we get better verifiability properties as well as chip and terminal authentication.

Keywords: PAKE, PACE, chip and terminal authentication, derandomization


NSS'2019