Verifier-Based Password-Authenticated Key Exchange: New Models and Constructions

Provided by: International Association for Cryptologic Research
Topic: Security
Format: PDF
While Password-Authenticated Key Exchange (or PAKE) protocols have been deeply studied, a server corruption remains the main threat, with many concrete cases nowadays. Verifier-based PAKE (or VPAKE) protocols, initially called augmented-PAKE, have been proposed to limit the impact of any leakage. However, no satisfactory security model has ever been proposed to quantify the actual security of a protocol in the standard model. The unique model proposed so far is an ideal functionality in the Universal Composability (UC) framework, but is only meaningful in idealized models.

Find By Topic