[Cfrg] I-D Action: draft-irtf-cfrg-augpake-09.txt
internet-drafts@ietf.org Fri, 19 January 2018 03:28 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: cfrg@ietf.org
Delivered-To: cfrg@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 1CD5B120047; Thu, 18 Jan 2018 19:28:26 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: cfrg@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 6.69.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <151633250606.26711.6749870451466069294@ietfa.amsl.com>
Date: Thu, 18 Jan 2018 19:28:26 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/xDgi9QsZNYrR9rv-0cKK5VEAZ58>
Subject: [Cfrg] I-D Action: draft-irtf-cfrg-augpake-09.txt
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.22
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Jan 2018 03:28:26 -0000
A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Crypto Forum RG of the IRTF. Title : Augmented Password-Authenticated Key Exchange (AugPAKE) Authors : SeongHan Shin Kazukuni Kobara Filename : draft-irtf-cfrg-augpake-09.txt Pages : 20 Date : 2018-01-18 Abstract: This document describes a secure and highly-efficient augmented password-authenticated key exchange (AugPAKE) protocol where a user remembers a low-entropy password and its verifier is registered in the intended server. In general, the user's password is chosen from a small set of dictionary, making the password susceptible to offline dictionary attacks. The AugPAKE protocol described here is secure against passive attacks, active attacks and offline dictionary attacks (on the obtained messages with passive/active attacks). Also, this protocol provides resistance to server compromise in the context that an attacker, who obtained the password verifier from the server, must at least perform offline dictionary attacks to gain any advantage in impersonating the user. The AugPAKE protocol is not only provably secure in the random oracle model but also the most efficient over the previous augmented PAKE protocols (SRP and AMP). The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-irtf-cfrg-augpake/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-irtf-cfrg-augpake-09 https://datatracker.ietf.org/doc/html/draft-irtf-cfrg-augpake-09 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-irtf-cfrg-augpake-09 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/
- [Cfrg] I-D Action: draft-irtf-cfrg-augpake-09.txt internet-drafts