{
  "draft": "draft-irtf-cfrg-spake2-26",
  "doc_id": "RFC9382",
  "title": "SPAKE2, a Password-Authenticated Key Exchange",
  "authors": [
    "W. Ladd"
  ],
  "format": [
    "XML",
    "TEXT",
    "HTML",
    "PDF"
  ],
  "page_count": "17",
  "pub_status": "INFORMATIONAL",
  "status": "INFORMATIONAL",
  "source": "Crypto Forum",
  "abstract": "This document describes SPAKE2, which is a protocol for two parties that share a password to derive a strong shared key without disclosing the password.  This method is compatible with any group, is computationally efficient, and has a security proof.  This document predated the Crypto Forum Research Group (CFRG) password-authenticated key exchange (PAKE) competition, and it was not selected; however, given existing use of variants in Kerberos and other applications, it was felt that publication was beneficial.  Applications that need a symmetric PAKE, but are unable to hash onto an elliptic curve at execution time, can use SPAKE2.  This document is a product of the Crypto Forum Research Group in the Internet Research Task Force (IRTF).",
  "pub_date": "September 2023",
  "keywords": [],
  "obsoletes": [],
  "obsoleted_by": [],
  "updates": [],
  "updated_by": [],
  "see_also": [],
  "doi": "10.17487/RFC9382",
  "errata_url": null
}