Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/bytemare/opaque
Go implementation of OPAQUE, the asymmetric password-authenticated key exchange protocol.
https://github.com/bytemare/opaque
cryptography elliptic-curves encryption go golang opaque password-safety ristretto255 security
Last synced: 1 day ago
JSON representation
Go implementation of OPAQUE, the asymmetric password-authenticated key exchange protocol.
- Host: GitHub
- URL: https://github.com/bytemare/opaque
- Owner: bytemare
- License: mit
- Created: 2020-11-21T11:02:48.000Z (almost 4 years ago)
- Default Branch: main
- Last Pushed: 2024-10-29T18:02:59.000Z (17 days ago)
- Last Synced: 2024-10-29T20:10:31.561Z (17 days ago)
- Topics: cryptography, elliptic-curves, encryption, go, golang, opaque, password-safety, ristretto255, security
- Language: Go
- Homepage:
- Size: 1.15 MB
- Stars: 35
- Watchers: 2
- Forks: 5
- Open Issues: 7
-
Metadata Files:
- Readme: README.md
- Contributing: .github/CONTRIBUTING.md
- License: LICENSE
- Code of conduct: .github/CODE_OF_CONDUCT.md
- Codeowners: .github/CODEOWNERS
- Security: .github/SECURITY.md
Awesome Lists containing this project
README
# OPAQUE
[](https://github.com/bytemare/opaque/actions/workflows/ci.yml)
[](https://pkg.go.dev/github.com/bytemare/opaque)
[](https://codecov.io/gh/bytemare/opaque)
```
import "github.com/bytemare/opaque"
```
This package implements [OPAQUE](https://datatracker.ietf.org/doc/draft-irtf-cfrg-opaque), an asymmetric password-authenticated
key exchange protocol that is secure against pre-computation attacks. It enables a client to authenticate to a server
without ever revealing its password to the server.
This implementation is developed by one of the authors of the RFC [Internet Draft](https://github.com/cfrg/draft-irtf-cfrg-opaque).
The main branch is in sync with the latest developments of the draft, and [the releases](https://github.com/bytemare/opaque/releases)
correspond to the [official draft versions](https://datatracker.ietf.org/doc/draft-irtf-cfrg-opaque).
#### What is OPAQUE?
> OPAQUE is an aPAKE that is secure against pre-computation attacks. OPAQUE provides forward secrecy with
> respect to password leakage while also hiding the password from the server, even during password registration. OPAQUE
> allows applications to increase the difficulty of offline dictionary attacks via iterated hashing or other key
> stretching schemes. OPAQUE is also extensible, allowing clients to safely store and retrieve arbitrary application data
> on servers using only their password.
#### References
- [The original paper](https://eprint.iacr.org/2018/163.pdf) from Jarecki, Krawczyk, and Xu.
- [OPAQUE is used in WhatsApp](https://www.whatsapp.com/security/WhatsApp_Security_Encrypted_Backups_Whitepaper.pdf) to enable end-to-end encrypted backups.
- [The GitHub repo](https://github.com/cfrg/draft-irtf-cfrg-opaque) where the draft is being specified.
## Documentation [](https://pkg.go.dev/github.com/bytemare/opaque)
You can find the documentation and usage examples in [the package doc](https://pkg.go.dev/github.com/bytemare/opaque) and [the project wiki](https://github.com/bytemare/opaque/wiki) .
## Versioning
[SemVer](https://semver.org) is used for versioning. For the versions available, see the [tags on the repository](https://github.com/bytemare/opaque/tags).
Minor v0.x versions match the corresponding CFRG draft version, the master branch implements the latest changes of [the draft development](https://github.com/cfrg/draft-irtf-cfrg-opaque).
## Contributing
Please read [CONTRIBUTING.md](.github/CONTRIBUTING.md) for details on the code of conduct, and the process for submitting pull requests.
## License
This project is licensed under the MIT License - see the [LICENSE](LICENSE) file for details.