[curves] Use cases for PAKE?
Feng Hao
feng.hao at newcastle.ac.uk
Thu Mar 20 06:18:31 PDT 2014
Hi Sebastien,
I think it's available here:
https://chromium.googlesource.com/chromium/chromium/+/master/crypto/p224_spake.cc
https://chromium.googlesource.com/chromium/chromium/+/master/crypto/p224_spake.h
Thanks for the link. It clarifies a lot. The use of text string as the seed makes it harder to tweak than the binary string, but still at least in theory there are endless possibilities for choosing the text string in different ways as the seed. Hence, there is an implied trust that the implementer didn't pre-compute the possibilities and chose one that gives the weakest. Note that this observation is purely theoretical. I don't mean practical attacks in any concrete terms.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://moderncrypto.org/mail-archive/curves/attachments/20140320/398aa747/attachment.html>
More information about the Curves
mailing list