all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Password-Authenticated TLS via OPAQUE and Post-Handshake Authentication

Add to bookmarks
Feb. 20, 2023, 4:30 p.m. |

IACR News www.iacr.org

ePrint Report: Password-Authenticated TLS via OPAQUE and Post-Handshake Authentication

Julia Hesse, Stanislaw Jarecki, Hugo Krawczyk, Christopher Wood


OPAQUE is an Asymmetric Password-Authenticated Key Exchange (aPAKE) protocol being standardized by the IETF (Internet Engineering Task Force) as a more secure alternative to the traditional ``password-over-TLS'' mechanism prevalent in current practice. OPAQUE defends against a variety of vulnerabilities of password-over-TLS by dispensing with reliance on PKI and TLS security, and ensuring that the password is never visible to servers or anyone other …

authentication current engineering eprint report exchange handshake internet key opaque password pki practice protocol report security task task force tls vulnerabilities wood

Visit resource

More from www.iacr.org / IACR News

Covert Adaptive Adversary Model: A New Adversary Model for Multiparty Computation 15 hours ago | www.iacr.org
adversaries adversary can caught +7
Relativized Succinct Arguments in the ROM Do Not Exist 15 hours ago | www.iacr.org
argument can correctness eprint report +6
Let Attackers Program Ideal Models: Modularity and Composability for Adaptive Compromise 15 hours ago | www.iacr.org
attackers cases composability compromise +9
Challenger: Blockchain-based Massively Multiplayer Online Game Architecture 15 hours ago | www.iacr.org
architecture attacks blockchain cheating +12
Multi User Security of LightMAC and LightMAC_Plus 15 hours ago | www.iacr.org
construction eprint report fse length +5
zkSNARKs in the ROM with Unconditional UC-Security 15 hours ago | www.iacr.org
adversaries composability cryptography eprint report +11
AFT '24: Advances in Financial Technologies 1 day, 11 hours ago | www.iacr.org
calendar date event event calendar +7
UbiSec 2024: The 4th International Conference on Ubiquitous Security 1 day, 11 hours ago | www.iacr.org
august calendar china conference +9
PRDC 2024: 29th IEEE Pacific Rim International Conference on Dependable Computing 1 day, 11 hours ago | www.iacr.org
august calendar computing conference +11

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Technical Support Engineer - Cyber Security

@ Microsoft | Taipei, Taipei City, Taiwan
View on infosec-jobs.com

Senior Security Engineer

@ Workato | Barcelona, Spain
View on infosec-jobs.com

Regional Cybersecurity Specialist

@ Bayer | Singapore, Singapore, SG
View on infosec-jobs.com

Cyber Security Network Engineer

@ Nine | North Sydney, Australia
View on infosec-jobs.com

Professional, IAM Security

@ Ingram Micro | Manila Shared Services Center
View on infosec-jobs.com

Principal Windows Threat & Detection Security Researcher (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com
View more jobs