Efficient two-server password-only authenticated key exchange

Efficient two-server password-only authenticated key, Password-authenticated key exchange (PAKE) is where a client and a server, who share a password, authenticate each other and meanwhile establish a cryptographic key by exchange of messages. In this setting, all the passwords necessary to authenticate clients are stored in a single server. If the server is compromised, due to, for example, hacking or even insider attack, passwords stored in the server are all disclosed. A scenario is considered, where two servers cooperate to authenticate a client and if one server is compromised, the…

Read More