2 @subsection Password Authenticated Key Agreement
4 GoVPN uses strong password authentication. That means that it uses human
5 memorable @strong{passphrases}, instead of some small high-entropy keys
6 that must be carried with himself. Passphrases differ from passwords:
7 they are long string of low-entropy characters -- they are easy to
8 remember and can have high overall entropy.
10 Strong zero-knowledge authentication means that:
13 @item compromising of passphrase files on either server or client sides
14 won't allow attackers to masquerade himself the client;
15 @item no need of protected secure storage on the server's side to keep
19 Passphrases are entered directly by the human on the client side. Server
20 side stores pre-shared @ref{Verifier, verifier}, containing dictionary
21 attack resistant passphrase derivative. Attacker can not use it to act