Next: Release 2.4, Previous: Release 3.1, Up: News
A-EKE with PBKDF2-based verifiers is resistant to dictionary attacks, can use human memorable passphrases instead of static keys and server-side verifiers can not be used for authentication (compromised server does not leak client’s authentication keys/passphrases).