1 of 17

Lec 18: (s)aPAKE Protocols

2 of 17

SPHF-Based aPAKE

3 of 17

Recall SPHF-based PAKE

 

 

 

 

 

 

 

 

 

4 of 17

  •  

5 of 17

Naïve (insecure) SPHF-based aPAKE

 

 

 

 

 

 

 

 

 

 

6 of 17

  •  

7 of 17

Secure SPHF-based aPAKE

 

 

 

 

 

 

 

 

 

 

 

8 of 17

 

  •  

9 of 17

  •  

10 of 17

  •  

11 of 17

(Corrected) SPHF-based aPAKE [BP13]

 

 

 

 

 

 

 

 

 

 

 

12 of 17

From aPAKE to Strong aPAKE

13 of 17

Strong aPAKE

  •  

14 of 17

Naïve approach does not work…

  •  

 

 

 

 

 

aPAKE

 

 

15 of 17

Use oblivious pseudorandom function (OPRF)

 

 

 

 

16 of 17

OPRF + aPAKE → saPAKE [JKX18]

  •  

 

 

 

 

OPRF

 

aPAKE

 

 

 

17 of 17

References

  • [BP13] Fabrice Benhamouda and David Pointcheval. Verifier-Based Password-Authenticated Key Exchange: New Models and Constructions. https://eprint.iacr.org/2013/833
  • [JKX18] Stanislaw Jarecki, Hugo Krawczyk, and Jiayu Xu. OPAQUE: An Asymmetric PAKE Protocol Secure Against Pre-Computation Attacks. In EUROCRYPT 2018.