Quantum-Safe Password Authenticated Key Establishment based on Elliptic Curve Isogenies

Monday, August 26, 2019

Password Authenticated Key Establishment(PAKE) is a primitive in which parties securely establish a common cryptographic key over an insecure channel using a common password that they share. PAKEs  have many applications and are in wide use. There is a variety of PAKE-based protocols and standards, as well as program implementations within certain well-known and widely used cryptographic libraries such as OpenSSL and Bouncy Castle. One of the main PAKE applications is smart card- or token-based security. Generally, software that interacts with smart cards and USB tokens mainly use standard programming interfaces which reduce duplicate code while performing the same job and enables the program to support devices from different vendors. PAKE is also a component of Wi-Fi specification.

Given the emerging quantum threat and ubiquity of PAKEs, it is imperative to construct a post-quantum PAKE. InfoSec Global, in collaboration with other well-known researchers in the area, have constructed one of the first quantum-resistant PAKEs and the first isogeny-based PAKE. The innovative scheme was well-received and accepted for publication at a prestigious conference MathCrypt 2019, where it was presented on August 18, 2019. The paper will also be published in one of the well-known journals - Special Issue of the Journal of Mathematical Cryptology.

Read all news