Expand description
OPAQUE augmented PAKE protocol (RFC 9807).
OPAQUE allows a client to authenticate to a server using a password without the server ever learning the password. The server stores only a registration record derived from the password.
Re-exports§
pub use ciphersuite::OpaqueCiphersuite;pub use error::OpaqueError;pub use login::ClientLogin;pub use login::ClientLoginState;pub use login::ServerLogin;pub use login::ServerLoginState;pub use messages::CredentialResponse;pub use messages::Envelope;pub use messages::RegistrationRecord;pub use messages::RegistrationRequest;pub use messages::RegistrationResponse;pub use messages::KE1;pub use messages::KE2;pub use messages::KE3;pub use registration::ClientRegistration;pub use registration::ClientRegistrationState;pub use registration::ServerRegistration;pub use server_setup::ServerSetup;
Modules§
- ciphersuite
- OPAQUE ciphersuite trait.
- envelope
- Envelope operations for OPAQUE (RFC 9807 Section 6.3).
- error
- Error types for the OPAQUE protocol.
- key_
derivation - Key derivation functions for the OPAQUE protocol (RFC 9807 Section 6.4).
- login
- Login (AKE) protocol for OPAQUE (RFC 9807 Section 6).
- messages
- Wire-format message types for the OPAQUE protocol.
- oprf
- OPRF operations for OPAQUE, delegating to the ciphersuite’s Oprf trait.
- registration
- Registration protocol for OPAQUE (RFC 9807 Section 5).
- server_
setup - Server long-term setup for OPAQUE.