pakery-spake2plus 0.2.0

SPAKE2+ augmented PAKE protocol (RFC 9383)
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20

//! Registration helper for computing the SPAKE2+ verifier.
//!
//! During registration, the Prover derives `(w0, w1)` from the password
//! (via password stretching), then computes `L = w1*G` and sends `(w0, L)`
//! to the Verifier for storage.

use alloc::vec::Vec;
use pakery_core::crypto::CpaceGroup;

use crate::ciphersuite::Spake2PlusCiphersuite;

/// Compute the verifier point `L = w1*G` from the scalar `w1`.
///
/// The password stretching (e.g. PBKDF/Argon2 to derive w0, w1) is the
/// caller's responsibility.
pub fn compute_verifier<C: Spake2PlusCiphersuite>(
    w1: &<C::Group as CpaceGroup>::Scalar,
) -> Vec<u8> {
    C::Group::basepoint_mul(w1).to_bytes()
}