A New Internet-Draft is available from the on-line Internet-Drafts directories.
Title : Augmented Password-Authenticated Key Exchange for Transport Layer Security (TLS)
Authors : SeongHan Shin
Kazukuni Kobara
Filename : draft-shin-tls-augpake-04.txt
Pages : 22
Date : 2015-01-28
Abstract:
This document describes an efficient augmented password-authenticated
key exchange (AugPAKE) protocol where a user remembers a low-entropy
password and its verifier is registered in the intended server. In
general, the user password is chosen from a small set of dictionary
whose space is within the off-line dictionary attacks. The AugPAKE
protocol described here is secure against passive attacks, active
attacks and off-line dictionary attacks (on the obtained messages
with passive/active attacks), and also provides resistance to server
compromise (in the context of augmented PAKE security). Based on the
AugPAKE protocol, this document also specifies a new password-only
authentication handshake for Transport Layer Security (TLS) protocol.
The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-shin-tls-augpake/
There's also a htmlized version available at:
http://tools.ietf.org/html/draft-shin-tls-augpake-04
A diff from the previous version is available at:
http://www.ietf.org/rfcdiff?url2=draft-shin-tls-augpake-04
Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.
Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
_______________________________________________
I-D-Announce mailing list
I-D-Announce@ietf.org
https://www.ietf.org/mailman/listinfo/i-d-announce
Internet-Draft directories: http://www.ietf.org/shadow.html
or ftp://ftp.ietf.org/ietf/1shadow-sites.txt
