Quoth Skip Tavakkolian <skip.tavakkol...@gmail.com>: > no slight to the inventor of dp9ik, but has it been verified?
It's using the SPAKE2 algorithm, which is fairly well analyzed. Here are a few starting points to read about it: https://www.lothar.com/blog/54-spake2-random-elements/ https://tools.ietf.org/html/draft-irtf-cfrg-spake2-12 https://www.ietf.org/proceedings/104/slides/slides-104-cfrg-pake-selection-01.pdf https://moderncrypto.org/mail-archive/curves/2015/000424.html While code reviews and audits are definitely welcome, it's a significant step forward over current p9sk1 DES keys that can be brute forced in less than a day. ------------------------------------------ 9fans: 9fans Permalink: https://9fans.topicbox.com/groups/9fans/Tc82939f1fda0e479-M1c4e6cbadd8fafc86e26cfc0 Delivery options: https://9fans.topicbox.com/groups/9fans/subscription
