SESPAKE

[gost-www.git] / en / sespake.texi

diff --git a/en/sespake.texi b/en/sespake.texi
new file mode 100644 (file)
index 0000000..3109c02
--- /dev/null
+++ b/en/sespake.texi
@@ -0,0 +1,17 @@
+@node enSESPAKE
+@section Security Evaluated Standardized Password-Authenticated Key Exchange
+
+@table @asis
+@item Algorithm type
+    Password-Authenticated balanced Key Agreement protocol (PAKE)
+@item RFC
+    @url{https://tools.ietf.org/html/rfc8133.html, 8133}
+@end table
+
+@strong{Features}:
+@itemize
+@item Password can be weak (strong PAKE), offline dictionary attacks are not dangerous
+@item PBKDF2 password strengthening
+@item There is key confirmation step
+@item GOST R 34.10 elliptic can could be used
+@end itemize