Skip to main content

Secure Password Ciphersuites for Transport Layer Security (TLS)

The information below is for an old version of the document.
Document Type This is an older version of an Internet-Draft whose latest revision is Replaced
Authors Dan Harkins , Dave Halasz
Last updated 2015-09-25 (Latest revision 2015-03-24)
Replaced by draft-harkins-tls-dragonfly, RFC 8492
Stream Internet Engineering Task Force (IETF)
Expired & archived
Stream WG state Parked WG Document
Other - see Comment Log
Document shepherd (None)
IESG IESG state Expired
Consensus boilerplate Unknown
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


This memo defines several new ciphersuites for the Transport Layer Security (TLS) protocol to support certificate-less, secure authentication using only a simple, low-entropy, password. The ciphersuites are all based on an authentication and key exchange protocol that is resistant to off-line dictionary attack.


Dan Harkins
Dave Halasz

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)