#oprf — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #oprf, aggregated by home.social.
-
I just published an RFC compliant Java implementation of OPAQUE/OPRF. OPAQUE provides authentication without the need to share the passwords... rendering server's authentication database useless for offline attacks. This implementation, with Typescript/Client support and Open API specs, can be found here: https://github.com/codeheadsystems/hofmann-elimination
I'd love to get a few eyes on it, looking for comments or security concerns. It's Apache 2 licensed and I'd love to get this (or something like it) everywhere to reduce the value of powning servers. I plan more ports to other languages, go, rust, c#.
#Java #Authentication #cryptography #infosec #opaque #oprf #rfc
-
for liboprf i try to implement the robust multiparty multiplication from Genarro,Rabin,Rabin '98. I struggle with implementing a check (the paper calls VSPS property). I asked the original authors 2 months ago, but they don't reply - i guess they're busy. I wrote up the relevant part of the paper, and my confusion and questions in this simple text (best viewed with a fixed with font!): https://ctrlc.hu/~stef/vsps_check.mail.txt - any help would be appreciated.
#crypto #multiparty #mpc #oprf -
hah! a paper on #threshold #oprf and threshold #opaque by jarecki et al, although krawczyk is missing from the team, it still will be interesting to see how far their paper is from my toprf and topaque implementations. https://eprint.iacr.org/2024/1455
-
new paper adding to the #postquatum #OPRF literature: https://eprint.iacr.org/2023/1176
they use garbled circuits with some pq prf, to achieve better results than the rest of these attempts, and aim for #universal #composability, but still are quite far from the half-pq (2)hashDH construction. #crypto
