SPAKE2+ example (PSA library)

Hello everyone,

I was looking at SPAKE2+ example (NCS v2.6.99) and trying to understand where the password used to derived the shared secret is set or used. Can anyone help me?

BR.

Parents

0 dejans 27 days ago

Hi,

RFC9383, mentions that w0 and w1 are obtained by hashing the password with identities of the participants. In the crypto spake2+ sample, you can see that w0||w1 is given in the key_pair[]. Some additional information about PAKE can be found in v2.7.0\modules\crypto\oberon-psa-crypto\include\psa\crypto_types.h and in v2.7.0\modules\crypto\oberon-psa-crypto\include\psa\crypto_extra.h. You can also look at ocrypto_spake2p_p256.h.

Best regards,
Dejan
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Reply

0 dejans 27 days ago

Hi,

RFC9383, mentions that w0 and w1 are obtained by hashing the password with identities of the participants. In the crypto spake2+ sample, you can see that w0||w1 is given in the key_pair[]. Some additional information about PAKE can be found in v2.7.0\modules\crypto\oberon-psa-crypto\include\psa\crypto_types.h and in v2.7.0\modules\crypto\oberon-psa-crypto\include\psa\crypto_extra.h. You can also look at ocrypto_spake2p_p256.h.

Best regards,
Dejan
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Children

No Data