Skip to content

[WIP] pake crate #2190

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
tarcieri wants to merge 1 commit into
base: master
Choose a base branch
from
Draft

[WIP] pake crate #2190

tarcieri wants to merge 1 commit into from
+490 −0

Conversation

@tarcieri
Copy link
Member

@tarcieri tarcieri commented Jan 14, 2026

Traits which describe the functionality of Password-Authenticated Key Exchange algorithms, which can be used to establish a shared secret over an insecure channel using only the client's knowledge of a password and the server's knowledge of a password hash for authentication.

@tarcieri tarcieri force-pushed the pake branch 2 times, most recently from 63f4eeb to 52aa0c2 Compare January 14, 2026 20:02
This was referenced Jan 14, 2026
Open
Open
@tarcieri
[WIP] pake crate
58e0c35 
Traits which describe the functionality of Password-Authenticated Key
Exchange algorithms, which can be used to establish a shared secret over
an insecure channel using only the client's knowledge of a password and
the server's knowledge of a password hash for authentication.
@rozbb
Copy link
Contributor

rozbb commented Jan 23, 2026

Why is "proof" used here? Usually we just refer to message 1 and message 2 for a 2-message PAKE. Here's an example of 3 popular PAKEs
Screenshot 2026-01-23 at 11 55 39 AM
I wrote them as one round, but it doesn't matter implementation-wise, since usually one side is the designated initiator anyway.

@tarcieri
Copy link
Member Author

tarcieri commented Jan 23, 2026

@rozbb happy to make the language more generic. The terminology there was coming from SRP which is what I was working on at the time (mostly I wrote this up trying to think of how to refactor the existing srp crate API into something more manageable)

@rozbb
Copy link
Contributor

rozbb commented Jan 23, 2026

Ok nice. Also, I assume you only want to include 2-message PAKEs for now? Those are the only standardized one atm.

I intend on implementing CPace in Rust soon, so I will be able to have informed feedback on this.

@tarcieri
Copy link
Member Author

tarcieri commented Jan 23, 2026

Yes, that sounds good. FWIW we have AuCPace

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@tarcieri @rozbb