The Security Evaluated Standardized Password-Authenticated Key Exchange Protocol
RFC 8133, “The Security Evaluated Standardized Password-Authenticated Key Exchange Protocol”, is an Informational document published in March 2017 by S. Smyshlyaev, E. Alekseev, I. Oshkin, V. Popov. The canonical text is published by the RFC Editor.
Abstract
This document describes the Security Evaluated Standardized Password- Authenticated Key Exchange (SESPAKE) protocol. The SESPAKE protocol provides password-authenticated key exchange for usage in systems for protection of sensitive information. The security proofs of the protocol were made for situations involving an active adversary in the channel, including man-in-the-middle (MitM) attacks and attacks based on the impersonation of one of the subjects.
What “Informational” means
Published for the general information of the community. It does not define an IETF standard and carries no standards-track status.
The canonical text of RFC 8133 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 8132 PATCH and FETCH Methods for the Constrained Application Protocol
- RFC 8134 Management Incident Lightweight Exchange Implementation Report
- RFC 8131 RSVP-TE Signaling Procedure for End-to-End GMPLS Restoration and Resource Sharing
- RFC 8135 Complex Addressing in IPv6
- RFC 8130 RTP Payload Format for the Mixed Excitation Linear Prediction Enhanced Codec
- RFC 8136 Additional Transition Functionality for IPv6
- RFC 8129 Authentication Indicator in Kerberos Tickets
- RFC 8137 IEEE 802.15.4 Information Element for the IETF