Paper 2017/1196

Post-Quantum Secure Remote Password Protocol from RLWE Problem

Xinwei Gao, Jintai Ding, Jiqiang Liu, and Lin Li


Secure Remote Password (SRP) protocol is an augmented Password-based Authenticated Key Exchange (PAKE) protocol based on discrete logarithm problem (DLP) with various attractive security features. Compared with basic PAKE protocols, SRP does not require server to store user's password and user does not send password to server to authenticate. These features are desirable for secure client-server applications. SRP has gained extensive real-world deployment, including Apple iCloud, 1Password etc. However, with the advent of quantum computer and Shor's algorithm, classic DLP-based public key cryptography algorithms are no longer secure, including SRP. Motivated by importance of SRP and threat from quantum attacks, we propose a RLWE-based SRP protocol (RLWE-SRP) which inherit advantages from SRP and elegant design from RLWE key exchange. We also present parameter choice and efficient portable C++ implementation of RLWE-SRP. Implementation of our 209-bit secure RLWE-SRP is more than 3x faster than 112-bit secure original SRP protocol, 5.5x faster than 80-bit secure J-PAKE and 14x faster than two 184-bit secure RLWE-based PAKE protocols with more desired properties.

Available format(s)
Cryptographic protocols
Publication info
Published elsewhere. 13th China International Conference on Information Security and Cryptology (INSCRYPT 2017)
Contact author(s)
xinwei gao 7 @ yandex com
2017-12-18: received
Short URL
Creative Commons Attribution


      author = {Xinwei Gao and Jintai Ding and Jiqiang Liu and Lin Li},
      title = {Post-Quantum Secure Remote Password Protocol from RLWE Problem},
      howpublished = {Cryptology ePrint Archive, Paper 2017/1196},
      year = {2017},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.