Litcius/Paper detail

SoK

Feng Hao, Paul C. van Oorschot

2022Proceedings of the 2022 ACM on Asia Conference on Computer and Communications Security21 citationsDOI

Abstract

Password-authenticated key exchange (PAKE) is a major area of cryptographic protocol research and practice. Many PAKE proposals have emerged in the 30 years following the original 1992 Encrypted Key Exchange (EKE), some accompanied by new theoretical models to support rigorous analysis. To reduce confusion and encourage practical development, major standards bodies including IEEE, ISO/IEC and the IETF have worked towards standardizing PAKE schemes, with mixed results. Challenges have included contrasts between heuristic protocols and schemes with security proofs, and subtleties in the assumptions of such proofs rendering some schemes unsuitable for practice. Despite initial difficulty identifying suitable use cases, the past decade has seen PAKE adoption in numerous large-scale applications such as Wi-Fi, Apple's iCloud, browser synchronization, e-passports, and the Thread network protocol for Internet of Things devices. Given this backdrop, we consolidate three decades of knowledge on PAKE protocols, integrating theory, practice, standardization and real-world experience. We provide a thorough and systematic review of the field, a summary of the state-of-the-art, a taxonomy to categorize existing protocols, and a comparative analysis of protocol performance using representative schemes from each taxonomy category. We also review real-world applications, summarize lessons learned, and highlight open research problems related to PAKE protocols.

Topics & Concepts

Computer scienceKey exchangeCryptographic protocolAuthenticated Key ExchangeProtocol (science)CryptographyStandardizationData scienceComputer securityEncryptionWorld Wide WebPublic-key cryptographyPathologyAlternative medicineOperating systemMedicineAdvanced Authentication Protocols SecurityUser Authentication and Security SystemsCryptography and Data Security