About: Encrypted key exchange

Property	Value
dbo:abstract	Encrypted Key Exchange (also known as EKE) is a family of password-authenticated key agreement methods described by Steven M. Bellovin and Michael Merritt. Although several of the forms of EKE in this paper were later found to be flawed, the surviving, refined, and enhanced forms of EKE effectively make this the first method to amplify a shared password into a shared key, where the shared key may subsequently be used to provide a zero-knowledge password proof or other functions. In the most general form of EKE, at least one party encrypts an ephemeral (one-time) public key using a password, and sends it to a second party, who decrypts it and uses it to negotiate a shared key with the first party. A second paper describes Augmented-EKE, and introduced the concept of augmented password-authenticated key agreement for client/server scenarios. Augmented methods have the added goal of ensuring that password verification data stolen from a server cannot be used by an attacker to masquerade as the client, unless the attacker first determines the password (e.g. by performing a brute force attack on the stolen data). A version of EKE based on Diffie–Hellman, known as DH-EKE, has survived attack and has led to improved variations, such as the PAK family of methods in IEEE P1363.2. Since the US patent on EKE expired in late 2011, an EAP authentication method using EKE was published as an IETF RFC. The EAP method uses the Diffie–Hellman variant of EKE. (en) Encrypted Key Exchange (anche detta EKE) è una famiglia di metodi di interazione tra due o più partecipanti per l'autenticazione e la condivisione di una chiave crittografica di sessione. Basati sulla conoscenza condivisa di una comune password, sono stati descritti da Steven M. Bellovin e Michael Merritt. Alcune varianti di EKE presenti nella pubblicazione originale hanno mostrato diverse debolezze, ma altre sue varianti, migliorate e potenziate, hanno reso EKE il primo metodo efficace per ricavare una chiave di sessione condivisa e l'autenticazione mutua mediante una password condivisa. (it) Обмен зашифрованными ключами (англ. Encrypted Key Exchange, EKE) — протокол, разработанный Стивом Белловином и Майклом Мерритом. EKE работает при условии, что у пользователей до начала работы протокола есть общий секрет. Протокол позволяет формировать сеансовый ключ для установления защищенного соединения. Для каждого сеанса генерируется новый сессионный ключ. (ru)
dbo:thumbnail	wiki-commons:Special:FilePath/EKE_scheme.svg?width=300
dbo:wikiPageID	1506894 (xsd:integer)
dbo:wikiPageLength	3115 (xsd:nonNegativeInteger)
dbo:wikiPageRevisionID	1098810788 (xsd:integer)
dbo:wikiPageWikiLink	dbr:Password-authenticated_key_agreement dbc:Key-agreement_protocols dbr:Lucent dbr:Password dbc:Cryptographic_protocols dbr:Diffie–Hellman_key_exchange dbr:IEEE_P1363 dbr:Extensible_Authentication_Protocol dbr:Zero-knowledge_password_proof dbr:Steven_M._Bellovin dbr:Shared_key dbr:US_patent dbr:File:EKE_scheme.svg
dbp:wikiPageUsesTemplate	dbt:Clarify dbt:Reflist dbt:US_patent dbt:Cryptography_navbox
dcterms:subject	dbc:Key-agreement_protocols dbc:Cryptographic_protocols
gold:hypernym	dbr:Family
rdf:type	yago:WikicatCryptographicProtocols yago:Abstraction100002137 yago:Communication100033020 yago:Direction106786629 yago:Message106598915 yago:Protocol106665108 yago:WikicatKey-agreementProtocols yago:Rule106652242
rdfs:comment	Encrypted Key Exchange (anche detta EKE) è una famiglia di metodi di interazione tra due o più partecipanti per l'autenticazione e la condivisione di una chiave crittografica di sessione. Basati sulla conoscenza condivisa di una comune password, sono stati descritti da Steven M. Bellovin e Michael Merritt. Alcune varianti di EKE presenti nella pubblicazione originale hanno mostrato diverse debolezze, ma altre sue varianti, migliorate e potenziate, hanno reso EKE il primo metodo efficace per ricavare una chiave di sessione condivisa e l'autenticazione mutua mediante una password condivisa. (it) Обмен зашифрованными ключами (англ. Encrypted Key Exchange, EKE) — протокол, разработанный Стивом Белловином и Майклом Мерритом. EKE работает при условии, что у пользователей до начала работы протокола есть общий секрет. Протокол позволяет формировать сеансовый ключ для установления защищенного соединения. Для каждого сеанса генерируется новый сессионный ключ. (ru) Encrypted Key Exchange (also known as EKE) is a family of password-authenticated key agreement methods described by Steven M. Bellovin and Michael Merritt. Although several of the forms of EKE in this paper were later found to be flawed, the surviving, refined, and enhanced forms of EKE effectively make this the first method to amplify a shared password into a shared key, where the shared key may subsequently be used to provide a zero-knowledge password proof or other functions. (en)
rdfs:label	Encrypted key exchange (en) Encrypted Key Exchange (it) Обмен зашифрованными ключами (ru)
owl:sameAs	freebase:Encrypted key exchange yago-res:Encrypted key exchange wikidata:Encrypted key exchange dbpedia-it:Encrypted key exchange dbpedia-ru:Encrypted key exchange https://global.dbpedia.org/id/3SWdd
prov:wasDerivedFrom	wikipedia-en:Encrypted_key_exchange?oldid=1098810788&ns=0
foaf:depiction	wiki-commons:Special:FilePath/EKE_scheme.svg
foaf:isPrimaryTopicOf	wikipedia-en:Encrypted_key_exchange
is dbo:wikiPageDisambiguates of	dbr:Eke
is dbo:wikiPageWikiLink of	dbr:Password-authenticated_key_agreement dbr:Password_Authenticated_Key_Exchange_by_Juggling dbr:List_of_Columbia_University_alumni_and_attendees dbr:Index_of_cryptography_articles dbr:Small_subgroup_confinement_attack dbr:Key-agreement_protocol dbr:Authentication dbr:Eke dbr:Extensible_Authentication_Protocol dbr:Zero-knowledge_password_proof dbr:Steven_M._Bellovin
is foaf:primaryTopic of	wikipedia-en:Encrypted_key_exchange