Skip to main content

SPAKE2+, an Augmented PAKE
draft-bar-cfrg-spake2plus-08

Revision differences

Document history

Date Rev. By Action
2022-10-20
08 (System) RFC Editor state changed to EDIT from MISSREF
2022-10-03
08 (System) RFC Editor state changed to MISSREF from EDIT
2022-10-03
08 (System) RFC Editor state changed to EDIT from MISSREF
2022-05-05
08 (System) IANA Review state changed to Version Changed - Review Needed from IANA OK - No Actions Needed
2022-05-05
08 Christopher Wood New version available: draft-bar-cfrg-spake2plus-08.txt
2022-05-05
08 (System) New version approved
2022-05-05
08 (System) Request for posting confirmation emailed to previous authors: Christopher Wood , Tim Taubert
2022-05-05
08 Christopher Wood Uploaded new revision
2022-03-21
07 (System) RFC Editor state changed to MISSREF
2022-03-21
07 (System) IANA Action state changed to No IANA Actions from In Progress
2022-03-20
07 (System) IANA Action state changed to In Progress
2022-03-20
07 Eliot Lear ISE state changed to Sent to the RFC Editor from In IESG Review
2022-03-20
07 Eliot Lear Sent request for publication to the RFC Editor
2022-02-22
07 (System) IANA Review state changed to IANA OK - No Actions Needed
2022-02-22
07 Amanda Baber
(Via drafts-eval@iana.org): IESG/Authors/ISE:

The IANA Functions Operator has reviewed draft-bar-cfrg-spake2plus-07 and has the following comments:

We understand that this document doesn't require any registry …
(Via drafts-eval@iana.org): IESG/Authors/ISE:

The IANA Functions Operator has reviewed draft-bar-cfrg-spake2plus-07 and has the following comments:

We understand that this document doesn't require any registry actions.

While it's often helpful for a document's IANA Considerations section to remain in place upon publication even if there are no actions, if the authors strongly prefer to remove it, we do not object.

If this assessment is not accurate, please respond as soon as possible.

Thank you,

Amanda Baber
IANA Operations Manager
2022-02-11
07 Adrian Farrel ISE state changed to In IESG Review from In ISE Review
2022-02-11
07 Adrian Farrel IETF conflict review initiated - see conflict-review-bar-cfrg-spake2plus
2022-02-11
07 Adrian Farrel
draft-bar-cfrg-spake2plus has been presented to the ISE for
publication as an Informational RFC on the Independent Stream.

NOTE: Unusually, the IESG may wish to check …
draft-bar-cfrg-spake2plus has been presented to the ISE for
publication as an Informational RFC on the Independent Stream.

NOTE: Unusually, the IESG may wish to check for conflicts with the IRTF.
      Although that does not fall in the scope of 5742 reviews, this
      work is related to the work of the CFRG.

==Purpose==

This document describes the SPAKE2+ protocol, an augmented PAKE protocol
where only one party has knowledge of the password.

SPAKE2+ falls out of the recently-approved IRTF SPAKE2 work, but was not
something the CFRG wished to pursue.  The protocol was originally
described in "The Twin-Diffie Hellman Problem and Applications",
EUROCRYPT 2008, Volume 4965 of Lecture notes in Computer Science.  It is
presented here for the record and to make the protocol available for
wider consideration.

== History==

draft-irtf-cfrg-spake2 is the product of the IRTF's CFRG and has just
completed IESG conflict review.  This work was originally part of that
effort, but was split out as the CFRG did not wish to pursue it.  This
document captures and consolidates the text removed from that document.

The document has been sent to the Crypto Review Panel for checking, and
it's progress has been discussed with the CFRG chairs.

The document was first brought to the ISE in April, 2021 at version -02.
Since then it has been revised several times to address review comments.

Note that this work was deliberately held back until
draft-irtf-cfrg-spake2 had progressed, and draft-irtf-cfrg-spake2 is a
normative reference to ensure that that document is published as an RFC
first.

==Non-IETF Work==

It is important that SPAKE2+ not be considered to have IRTF or IETF
endorsement.

The document explicitly calls out that SPAKE2+ was not selected as the
result of the CFRG PAKE selection competition. It also notes that the
document was produced outside of the IETF and IRTF, and represents the
opinions of the authors.  It also states that publication of this document
as an RFC in the Independent Submissions Stream does not imply
endorsement of SPAKE2+ by the IETF or IRTF.

==IANA==

The document makes no request for IANA action.

==Reviews==

As well as reviewing the document himself, the ISE commissioned reviews
from Jean-Philippe Aumasson, Karthik Bhargavan, Watson Ladd, and
Christopher Patton.  Scott Fluhrer did a review for the Crypto Review
Panel.

The reviews led to a number of updates to fully address the issues
raised.

Details of the reviews can be retrieved on request.
2022-02-11
07 Christopher Wood New version available: draft-bar-cfrg-spake2plus-07.txt
2022-02-11
07 (System) New version accepted (logged-in submitter: Christopher Wood)
2022-02-11
07 Christopher Wood Uploaded new revision
2022-02-10
06 Adrian Farrel
draft-bar-cfrg-spake2plus has been presented to the ISE for
publication as an Informational RFC on the Independent Stream.

NOTE: Unusually, the IESG may wish to check …
draft-bar-cfrg-spake2plus has been presented to the ISE for
publication as an Informational RFC on the Independent Stream.

NOTE: Unusually, the IESG may wish to check for conflicts with the IRTF.
      Although that does not fall in the scope of 5742 reviews, this
      work is related to the work of the CFRG.

==Purpose==

This document describes the SPAKE2+ protocol, an augmented PAKE protocol
where only one party has knowledge of the password.

SPAKE2+ falls out of the recently-approved IRTF SPAKE2 work, but was not
something the CFRG wished to pursue.  The protocol was originally
described in "The Twin-Diffie Hellman Problem and Applications",
EUROCRYPT 2008, Volume 4965 of Lecture notes in Computer Science.  It is
presented here for the record and to make the protocol available for
wider consideration.

== History==

draft-irtf-cfrg-spake2 is the product of the IRTF's CFRG and has just
completed IESG conflict review.  This work was originally part of that
effort, but was split out as the CFRG did not wish to pursue it.  This
document captures and consolidates the text removed from that document.

The document has been sent to the Crypto Review Panel for checking, and
it's progress has been discussed with the CFRG chairs.

The document was first brought to the ISE in April, 2021 at version -02.
Since then it has been revised several times to address review comments.

Note that this work was deliberately held back until
draft-irtf-cfrg-spake2 had progressed, and draft-irtf-cfrg-spake2 is a
normative reference to ensure that that document is published as an RFC
first.

==Non-IETF Work==

It is important that SPAKE2+ not be considered to have IRTF or IETF
endorsement.

The document explicitly calls out that SPAKE2+ was not selected as the
result of the CFRG PAKE selection competition. It also notes that the
document was produced outside of the IETF and IRTF, and represents the
opinions of the authors.  Publication of this document as an RFC in the
Independent Submissions Stream does not imply endorsement of SPAKE2+ by
the IETF or IRTF.

==IANA==

The document makes no request for IANA action.

==Reviews==

As well as reviewing the document himself, the ISE commissioned reviews
from Jean-Philippe Aumasson, Karthik Bhargavan, Watson Ladd, and
Christopher Patton.  Scott Fluhrer did a review for the Crypto Review
Panel.

The reviews led to a number of updates to fully address the issues
raised.

Details of the reviews can be retrieved on request.

2022-02-10
06 (System) Revised ID Needed tag cleared
2022-02-10
06 Christopher Wood New version available: draft-bar-cfrg-spake2plus-06.txt
2022-02-10
06 (System) New version accepted (logged-in submitter: Christopher Wood)
2022-02-10
06 Christopher Wood Uploaded new revision
2022-02-10
05 Adrian Farrel Tag Revised I-D Needed set.
2022-02-10
05 Adrian Farrel ISE state changed to In ISE Review from Response to Review Needed
2022-02-09
05 (System) Revised ID Needed tag cleared
2022-02-09
05 Christopher Wood New version available: draft-bar-cfrg-spake2plus-05.txt
2022-02-09
05 (System) New version accepted (logged-in submitter: Christopher Wood)
2022-02-09
05 Christopher Wood Uploaded new revision
2022-01-25
04 Adrian Farrel Tag Revised I-D Needed set.
2022-01-25
04 Adrian Farrel ISE state changed to Response to Review Needed from Finding Reviewers
2022-01-03
04 (System) Revised ID Needed tag cleared
2022-01-03
04 Christopher Wood New version available: draft-bar-cfrg-spake2plus-04.txt
2022-01-03
04 (System) New version accepted (logged-in submitter: Christopher Wood)
2022-01-03
04 Christopher Wood Uploaded new revision
2021-11-26
03 Adrian Farrel Tag Revised I-D Needed set.
2021-11-25
03 Adrian Farrel ISE state changed to Finding Reviewers from Submission Received
2021-07-06
03 Christopher Wood New version available: draft-bar-cfrg-spake2plus-03.txt
2021-07-06
03 (System) New version accepted (logged-in submitter: Christopher Wood)
2021-07-06
03 Christopher Wood Uploaded new revision
2021-06-13
02 (System) Document has expired
2021-04-18
02 Adrian Farrel Notification list changed to rfc-ise@rfc-editor.org because the document shepherd was set
2021-04-18
02 Adrian Farrel Document shepherd changed to Adrian Farrel
2021-04-18
02 Adrian Farrel ISE state changed to Submission Received
2021-04-18
02 Adrian Farrel Intended Status changed to Informational from None
2021-04-18
02 Adrian Farrel Stream changed to ISE from None
2020-12-10
02 Christopher Wood New version available: draft-bar-cfrg-spake2plus-02.txt
2020-12-10
02 (System) New version accepted (logged-in submitter: Christopher Wood)
2020-12-10
02 Christopher Wood Uploaded new revision
2020-06-09
01 Christopher Wood New version available: draft-bar-cfrg-spake2plus-01.txt
2020-06-09
01 (System) New version accepted (logged-in submitter: Christopher Wood)
2020-06-09
01 Christopher Wood Uploaded new revision
2020-03-09
00 Christopher Wood New version available: draft-bar-cfrg-spake2plus-00.txt
2020-03-09
00 (System) New version accepted (logged-in submitter: Christopher Wood)
2020-03-09
00 Christopher Wood Uploaded new revision