home.social

#oprf — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #oprf, aggregated by home.social.

  1. I just published an RFC compliant Java implementation of OPAQUE/OPRF. OPAQUE provides authentication without the need to share the passwords... rendering server's authentication database useless for offline attacks. This implementation, with Typescript/Client support and Open API specs, can be found here: github.com/codeheadsystems/hof

    I'd love to get a few eyes on it, looking for comments or security concerns. It's Apache 2 licensed and I'd love to get this (or something like it) everywhere to reduce the value of powning servers. I plan more ports to other languages, go, rust, c#.

    #Java #Authentication #cryptography #infosec #opaque #oprf #rfc

  2. I just published an RFC compliant Java implementation of OPAQUE/OPRF. OPAQUE provides authentication without the need to share the passwords... rendering server's authentication database useless for offline attacks. This implementation, with Typescript/Client support and Open API specs, can be found here: github.com/codeheadsystems/hof

    I'd love to get a few eyes on it, looking for comments or security concerns. It's Apache 2 licensed and I'd love to get this (or something like it) everywhere to reduce the value of powning servers. I plan more ports to other languages, go, rust, c#.

    #Java #Authentication #cryptography #infosec #opaque #oprf #rfc

  3. I just published an RFC compliant Java implementation of OPAQUE/OPRF. OPAQUE provides authentication without the need to share the passwords... rendering server's authentication database useless for offline attacks. This implementation, with Typescript/Client support and Open API specs, can be found here: github.com/codeheadsystems/hof

    I'd love to get a few eyes on it, looking for comments or security concerns. It's Apache 2 licensed and I'd love to get this (or something like it) everywhere to reduce the value of powning servers. I plan more ports to other languages, go, rust, c#.

  4. in liboprf we have an updatable OPRF without using a pairing, and with klutschnik we have a project that does updatable public key encryption, for data at rest. why is their upstream academic research not even mentioned in this paper: eprint.iacr.org/2025/175

    Hugo Krawczyk is even a colleague of some of these authors.

    #upke #crypto #oprf

  5. in liboprf we have an updatable OPRF without using a pairing, and with klutschnik we have a project that does updatable public key encryption, for data at rest. why is their upstream academic research not even mentioned in this paper: eprint.iacr.org/2025/175

    Hugo Krawczyk is even a colleague of some of these authors.

    #upke #crypto #oprf

  6. in liboprf we have an updatable OPRF without using a pairing, and with klutschnik we have a project that does updatable public key encryption, for data at rest. why is their upstream academic research not even mentioned in this paper: eprint.iacr.org/2025/175

    Hugo Krawczyk is even a colleague of some of these authors.

    #upke #crypto #oprf

  7. evolution of generative password "storage" over the last decades:

    1. "password"
    2. hash("password")
    3. hmac("password", site)
    4. oprf("password"+site, sphinx-oracle)
    5. t-oprf(password+site, [sphinx-oracle1, sphinx-oracle2, ... sphinx-oracleN])

    #crypto #oprf #passwordmanager

    check out sphinx.pm, v2 with threshold oprf coming soon...

  8. evolution of generative password "storage" over the last decades:

    1. "password"
    2. hash("password")
    3. hmac("password", site)
    4. oprf("password"+site, sphinx-oracle)
    5. t-oprf(password+site, [sphinx-oracle1, sphinx-oracle2, ... sphinx-oracleN])

    #crypto #oprf #passwordmanager

    check out sphinx.pm, v2 with threshold oprf coming soon...

  9. evolution of generative password "storage" over the last decades:

    1. "password"
    2. hash("password")
    3. hmac("password", site)
    4. oprf("password"+site, sphinx-oracle)
    5. t-oprf(password+site, [sphinx-oracle1, sphinx-oracle2, ... sphinx-oracleN])

    #crypto #oprf #passwordmanager

    check out sphinx.pm, v2 with threshold oprf coming soon...

  10. evolution of generative password "storage" over the last decades:

    1. "password"
    2. hash("password")
    3. hmac("password", site)
    4. oprf("password"+site, sphinx-oracle)
    5. t-oprf(password+site, [sphinx-oracle1, sphinx-oracle2, ... sphinx-oracleN])

    #crypto #oprf #passwordmanager

    check out sphinx.pm, v2 with threshold oprf coming soon...

  11. with the help of @vegetables i finally got it working. i had two off-by-ones, and i was messing up the generation of the commitments. \o/ robust updatable threshold oprfs here i come! expect some code hitting the liboprf repo soon.

    #ngi0 #crypto #oprf #multipartyComputation #liboprf

  12. with the help of @vegetables i finally got it working. i had two off-by-ones, and i was messing up the generation of the commitments. \o/ robust updatable threshold oprfs here i come! expect some code hitting the liboprf repo soon.

    #ngi0 #crypto #oprf #multipartyComputation #liboprf

  13. with the help of @vegetables i finally got it working. i had two off-by-ones, and i was messing up the generation of the commitments. \o/ robust updatable threshold oprfs here i come! expect some code hitting the liboprf repo soon.

    #ngi0 #crypto #oprf #multipartyComputation #liboprf

  14. with the help of @vegetables i finally got it working. i had two off-by-ones, and i was messing up the generation of the commitments. \o/ robust updatable threshold oprfs here i come! expect some code hitting the liboprf repo soon.

    #ngi0 #crypto #oprf #multipartyComputation #liboprf

  15. with the help of @vegetables i finally got it working. i had two off-by-ones, and i was messing up the generation of the commitments. \o/ robust updatable threshold oprfs here i come! expect some code hitting the liboprf repo soon.

    #ngi0 #crypto #oprf #multipartyComputation #liboprf

  16. for liboprf i try to implement the robust multiparty multiplication from Genarro,Rabin,Rabin '98. I struggle with implementing a check (the paper calls VSPS property). I asked the original authors 2 months ago, but they don't reply - i guess they're busy. I wrote up the relevant part of the paper, and my confusion and questions in this simple text (best viewed with a fixed with font!): ctrlc.hu/~stef/vsps_check.mail - any help would be appreciated.
    #crypto #multiparty #mpc #oprf

  17. for liboprf i try to implement the robust multiparty multiplication from Genarro,Rabin,Rabin '98. I struggle with implementing a check (the paper calls VSPS property). I asked the original authors 2 months ago, but they don't reply - i guess they're busy. I wrote up the relevant part of the paper, and my confusion and questions in this simple text (best viewed with a fixed with font!): ctrlc.hu/~stef/vsps_check.mail - any help would be appreciated.
    #crypto #multiparty #mpc #oprf

  18. for liboprf i try to implement the robust multiparty multiplication from Genarro,Rabin,Rabin '98. I struggle with implementing a check (the paper calls VSPS property). I asked the original authors 2 months ago, but they don't reply - i guess they're busy. I wrote up the relevant part of the paper, and my confusion and questions in this simple text (best viewed with a fixed with font!): ctrlc.hu/~stef/vsps_check.mail - any help would be appreciated.
    #crypto #multiparty #mpc #oprf

  19. for liboprf i try to implement the robust multiparty multiplication from Genarro,Rabin,Rabin '98. I struggle with implementing a check (the paper calls VSPS property). I asked the original authors 2 months ago, but they don't reply - i guess they're busy. I wrote up the relevant part of the paper, and my confusion and questions in this simple text (best viewed with a fixed with font!): ctrlc.hu/~stef/vsps_check.mail - any help would be appreciated.
    #crypto #multiparty #mpc #oprf

  20. for liboprf i try to implement the robust multiparty multiplication from Genarro,Rabin,Rabin '98. I struggle with implementing a check (the paper calls VSPS property). I asked the original authors 2 months ago, but they don't reply - i guess they're busy. I wrote up the relevant part of the paper, and my confusion and questions in this simple text (best viewed with a fixed with font!): ctrlc.hu/~stef/vsps_check.mail - any help would be appreciated.
    #crypto #multiparty #mpc #oprf

  21. just prototyped this 3hashtdh from eprint.iacr.org/2024/1455 in python using pyoprf, and it is surprisingly simple and elegant. really looking forward to add it properly to liboprf. adding the t-opaque from the paper is a childs play, for each "target server" one additional hkdf call is all that is necessary besides using 3hashtdh...
    github.com/stef/liboprf/blob/m

    #threshold #oprf #crypto #liboprf

  22. just prototyped this 3hashtdh from eprint.iacr.org/2024/1455 in python using pyoprf, and it is surprisingly simple and elegant. really looking forward to add it properly to liboprf. adding the t-opaque from the paper is a childs play, for each "target server" one additional hkdf call is all that is necessary besides using 3hashtdh...
    github.com/stef/liboprf/blob/m

    #threshold #oprf #crypto #liboprf

  23. just prototyped this 3hashtdh from eprint.iacr.org/2024/1455 in python using pyoprf, and it is surprisingly simple and elegant. really looking forward to add it properly to liboprf. adding the t-opaque from the paper is a childs play, for each "target server" one additional hkdf call is all that is necessary besides using 3hashtdh...
    github.com/stef/liboprf/blob/m

    #threshold #oprf #crypto #liboprf

  24. hah! a paper on #threshold #oprf and threshold #opaque by jarecki et al, although krawczyk is missing from the team, it still will be interesting to see how far their paper is from my toprf and topaque implementations. eprint.iacr.org/2024/1455

  25. hah! a paper on #threshold #oprf and threshold #opaque by jarecki et al, although krawczyk is missing from the team, it still will be interesting to see how far their paper is from my toprf and topaque implementations. eprint.iacr.org/2024/1455

  26. hah! a paper on #threshold #oprf and threshold #opaque by jarecki et al, although krawczyk is missing from the team, it still will be interesting to see how far their paper is from my toprf and topaque implementations. eprint.iacr.org/2024/1455

  27. @eprint what they fail to say in the title, they claim to be post-quantum, and can do this in less than a second on consumer-grade hw...

    (re: ia.cr/2024/1032)

    #postquantum #oprf #threshold

  28. @eprint what they fail to say in the title, they claim to be post-quantum, and can do this in less than a second on consumer-grade hw...

    (re: ia.cr/2024/1032)

    #postquantum #oprf #threshold

  29. @eprint what they fail to say in the title, they claim to be post-quantum, and can do this in less than a second on consumer-grade hw...

    (re: ia.cr/2024/1032)

    #postquantum #oprf #threshold

  30. @eprint what they fail to say in the title, they claim to be post-quantum, and can do this in less than a second on consumer-grade hw...

    (re: ia.cr/2024/1032)

    #postquantum #oprf #threshold

  31. woohooo, finally SPHINX has a dedicated website: sphinx.pm/ - it's still a bit immature, but it is a start.

    #sphinx #passwordmanager #oprf

  32. woohooo, finally SPHINX has a dedicated website: sphinx.pm/ - it's still a bit immature, but it is a start.

    #sphinx #passwordmanager #oprf

  33. woohooo, finally SPHINX has a dedicated website: sphinx.pm/ - it's still a bit immature, but it is a start.

    #sphinx #passwordmanager #oprf

  34. asciimoo is applying some much needed love to the websphinx browser addons. if all goes well there will be one addon for both chrome and firefox - and there will be webauthn support via sphinx...

    #nlnet #ngi0 #passwordmanager #sphinx #oprf

  35. asciimoo is applying some much needed love to the websphinx browser addons. if all goes well there will be one addon for both chrome and firefox - and there will be webauthn support via sphinx...

    #nlnet #ngi0 #passwordmanager #sphinx #oprf

  36. asciimoo is applying some much needed love to the websphinx browser addons. if all goes well there will be one addon for both chrome and firefox - and there will be webauthn support via sphinx...

    #nlnet #ngi0 #passwordmanager #sphinx #oprf

  37. wow, threshold-sphinx is a thing! just managed to get a password for which the oprf key has been created by a dkg. not that we knew this is possible, sure. but now i have working code doing so! still a lot of work until this can be deployed, but it is very promising start! #sphinx #oprf #threshold #passwordmanager #nlnet #ngi0

  38. wow, threshold-sphinx is a thing! just managed to get a password for which the oprf key has been created by a dkg. not that we knew this is possible, sure. but now i have working code doing so! still a lot of work until this can be deployed, but it is very promising start! #sphinx #oprf #threshold #passwordmanager #nlnet #ngi0

  39. wow, threshold-sphinx is a thing! just managed to get a password for which the oprf key has been created by a dkg. not that we knew this is possible, sure. but now i have working code doing so! still a lot of work until this can be deployed, but it is very promising start! #sphinx #oprf #threshold #passwordmanager #nlnet #ngi0

  40. wow, threshold-sphinx is a thing! just managed to get a password for which the oprf key has been created by a dkg. not that we knew this is possible, sure. but now i have working code doing so! still a lot of work until this can be deployed, but it is very promising start! #sphinx #oprf #threshold #passwordmanager #nlnet #ngi0