Zero-knowledge password proof: Difference between revisions

Content deleted Content added

Inline

Revision as of 20:43, 26 February 2008

A zero-knowledge password proof (ZKPP) refers to a password-authenticated key agreement protocol that is secure against off-line dictionary attacks. The terminology zero-knowledge password proof is not used in the technical (cryptographic) literature, and is somewhat of a misnomer as it does not have much in common with zero-knowledge_proofs. (Technically speaking, almost all existing password-authenticated key agreement protocols are not zero knowledge.) The terminology ZKPP likely developed based on the intuitive idea that a secure protocol for password-authenticated key agreement works by convincing the server that the client knows the correct password without sending the password to the server.

External links

Revision as of 20:43, 26 February 2008 edit 128.8.131.12 (talk) No edit summary ← Previous edit		Revision as of 20:43, 26 February 2008 edit undo 128.8.131.12 (talk) No edit summary Next edit →
Line 1:		Line 1:
	A ''zero-knowledge password proof'' (ZKPP) refers to a [[~~Password~~-authenticated key agreement]] protocol that is secure against off-line dictionary attacks. The terminology ''zero-knowledge password proof'' is not used in the technical (cryptographic) literature, and is somewhat of a misnomer as it does not have much in common with [[zero-knowledge_proof]]s. (Technically speaking, almost all existing password-authenticated key agreement protocols are not zero knowledge.) The terminology ZKPP likely developed based on the intuitive idea that a secure protocol for password-authenticated key agreement works by convincing the server that the client knows the correct password without sending the password to the server.		A ''zero-knowledge password proof'' (ZKPP) refers to a [[password-authenticated key agreement]] protocol that is secure against off-line dictionary attacks. The terminology ''zero-knowledge password proof'' is not used in the technical (cryptographic) literature, and is somewhat of a misnomer as it does not have much in common with [[zero-knowledge_proof]]s. (Technically speaking, almost all existing password-authenticated key agreement protocols are not zero knowledge.) The terminology ZKPP likely developed based on the intuitive idea that a secure protocol for password-authenticated key agreement works by convincing the server that the client knows the correct password without sending the password to the server.

	==External links==		==External links==