Paper 2023/324

LATKE: A Framework for Constructing Identity-Binding PAKEs

Jonathan Katz, University of Maryland, College Park
Michael Rosenberg, University of Maryland, College Park

Motivated by applications to the internet of things (IoT), Cremers, Naor, Paz, and Ronen (CRYPTO '22) recently considered a setting in which multiple parties share a common password and want to be able to pairwise authenticate. They observed that using standard password-authenticated key exchange (PAKE) protocols in this setting allows for catastrophic impersonation attacks whereby compromise of a single party allows an attacker to impersonate any party to any other. To address this, they proposed the notion of identity-binding PAKE (iPAKE) and showed constructions of iPAKE protocol CHIP. We present LATKE, a framework for iPAKE that allows us to construct protocols with features beyond what CHIP achieves. In particular, we can instantiate the components of our framework to yield an iPAKE protocol with post-quantum security and identity concealment, where one party hides its identity until it has authenticated the other. This is the first iPAKE protocol with either property. To demonstrate the concrete efficiency of our framework, we implement various instantiations and compare the resulting protocols to CHIP when run on commodity hardware. The performance of our schemes is very close to that of CHIP, while offering stronger security properties.

Note: This is v1.0 of the paper. It is a minor revision of the previous version, v0.5. See changelog (appendix D) for a list of what's changed.

Available format(s)
Cryptographic protocols
Publication info
A minor revision of an IACR publication in CRYPTO 2024
key agreementpassword-based cryptographyIoTpost-quantum cryptography
Contact author(s)
jkatz2 @ gmail com
micro @ cs umd edu
2024-07-06: last of 4 revisions
2023-03-05: received
See all versions
Short URL
Creative Commons Attribution


      author = {Jonathan Katz and Michael Rosenberg},
      title = {{LATKE}: A Framework for Constructing Identity-Binding {PAKEs}},
      howpublished = {Cryptology ePrint Archive, Paper 2023/324},
      year = {2023},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.