%% You should probably cite draft-irtf-cfrg-opaque-17 instead of this revision. @techreport{irtf-cfrg-opaque-16, number = {draft-irtf-cfrg-opaque-16}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-irtf-cfrg-opaque/16/}, author = {Daniel Bourdrez and Hugo Krawczyk and Kevin Lewi and Christopher A. Wood}, title = {{The OPAQUE Augmented PAKE Protocol}}, pagetotal = 82, year = 2024, month = jun, day = 12, abstract = {This document describes the OPAQUE protocol, an augmented (or asymmetric) password-authenticated key exchange (aPAKE) that supports mutual authentication in a client-server setting without reliance on PKI and with security against pre-computation attacks upon server compromise. In addition, the protocol provides forward secrecy and the ability to hide the password from the server, even during password registration. This document specifies the core OPAQUE protocol and one instantiation based on 3DH. This document is a product of the Crypto Forum Research Group (CFRG) in the IRTF.}, }