PAKE (password-authenticated key exchange)PAKE (password-authenticated key exchange) is a protocol which supports the hiding of a password from the network communications. With this we can have a relatively weak shared password on either side, and then communicate to determine a strong shared key.
|
Presentation
Reference
[1] Bellovin, S. M., & Merritt, M. (1992). Encrypted key exchange: Password-based protocols secure against dictionary attacks [here].
[2] Hao, F., & Ryan, P. Y. (2008, April). Password authenticated key exchange by juggling. In International Workshop on Security Protocols (pp. 159-171). Springer, Berlin, Heidelberg [here].
[3] F. Hao, J-PAKE: Password-Authenticated Key Exchange by Juggling. RFC 8236.