The Security Evaluated Standardized Password-Authenticated Key Exchange (SESPAKE) Protocol, March 2017
- Canonical URL:
- File formats:
- S. Smyshlyaev. Ed.
Discuss this RFC: Send questions or comments to firstname.lastname@example.org
This document describes the Security Evaluated Standardized Password- Authenticated Key Exchange (SESPAKE) protocol. The SESPAKE protocol provides password-authenticated key exchange for usage in systems for protection of sensitive information. The security proofs of the protocol were made for situations involving an active adversary in the channel, including man-in-the-middle (MitM) attacks and attacks based on the impersonation of one of the subjects.
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 4844.