Simultaneous Authentication of Equals
E121933
Simultaneous Authentication of Equals is a secure password-based key exchange protocol that protects Wi‑Fi connections from offline dictionary attacks and improves authentication robustness.
All labels observed (1)
| Label | Occurrences |
|---|---|
| Simultaneous Authentication of Equals canonical | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T1061955 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: Simultaneous Authentication of Equals Context triple: [Wi‑Fi CERTIFIED WPA3, uses, Simultaneous Authentication of Equals]
-
A.
Secrecy, Authentication, and Public Key Systems
"Secrecy, Authentication, and Public Key Systems" is Ralph Merkle's influential doctoral thesis that helped lay the foundations of modern public-key cryptography and secure communication protocols.
-
B.
Temporal Key Integrity Protocol
Temporal Key Integrity Protocol (TKIP) is a legacy wireless security algorithm designed to enhance WEP encryption in early Wi‑Fi networks by dynamically changing encryption keys.
-
C.
The Secure Shell (SSH) Authentication Protocol
The Secure Shell (SSH) Authentication Protocol is a standardized network protocol that defines methods for securely authenticating users and hosts in SSH connections using mechanisms such as passwords, public keys, and keyboard-interactive methods.
-
D.
New Directions in Cryptography
New Directions in Cryptography is a landmark 1976 paper that introduced the concepts of public-key cryptography and digital signatures, fundamentally reshaping modern cryptography and secure communications.
-
E.
Diffie–Hellman key exchange
Diffie–Hellman key exchange is a foundational cryptographic protocol that enables two parties to securely establish a shared secret over an insecure communication channel.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: Simultaneous Authentication of Equals Target entity description: Simultaneous Authentication of Equals is a secure password-based key exchange protocol that protects Wi‑Fi connections from offline dictionary attacks and improves authentication robustness.
-
A.
Secrecy, Authentication, and Public Key Systems
"Secrecy, Authentication, and Public Key Systems" is Ralph Merkle's influential doctoral thesis that helped lay the foundations of modern public-key cryptography and secure communication protocols.
-
B.
Temporal Key Integrity Protocol
Temporal Key Integrity Protocol (TKIP) is a legacy wireless security algorithm designed to enhance WEP encryption in early Wi‑Fi networks by dynamically changing encryption keys.
-
C.
The Secure Shell (SSH) Authentication Protocol
The Secure Shell (SSH) Authentication Protocol is a standardized network protocol that defines methods for securely authenticating users and hosts in SSH connections using mechanisms such as passwords, public keys, and keyboard-interactive methods.
-
D.
New Directions in Cryptography
New Directions in Cryptography is a landmark 1976 paper that introduced the concepts of public-key cryptography and digital signatures, fundamentally reshaping modern cryptography and secure communications.
-
E.
Diffie–Hellman key exchange
Diffie–Hellman key exchange is a foundational cryptographic protocol that enables two parties to securely establish a shared secret over an insecure communication channel.
- F. None of above. chosen
Statements (47)
| Predicate | Object |
|---|---|
| instanceOf |
Wi‑Fi authentication method
ⓘ
cryptographic protocol ⓘ password-authenticated key exchange protocol ⓘ |
| abbreviation | SAE ⓘ |
| alsoKnownAs |
Dragonfly handshake in Wi‑Fi context
ⓘ
SAE handshake ⓘ |
| basedOn | Dragonfly key exchange ⓘ |
| category | password-authenticated key exchange ⓘ |
| comparedTo | WPA2-PSK 4‑way handshake ⓘ |
| definedBy |
Wi‑Fi Alliance
ⓘ
surface form:
Wi‑Fi Alliance for WPA3
|
| designedFor |
Wi‑Fi networks
ⓘ
pre-shared key environments ⓘ |
| goal |
improve robustness of Wi‑Fi authentication
ⓘ
prevent offline password cracking from captured traffic ⓘ |
| hasFeature |
no password-equivalent data stored on access point
ⓘ
prevents reuse of captured handshakes for password testing ⓘ |
| implementedIn |
modern Wi‑Fi access points supporting WPA3
ⓘ
modern Wi‑Fi client devices supporting WPA3 ⓘ |
| improvesOn | resistance to offline attacks compared to WPA2-PSK ⓘ |
| introducedIn |
Wi‑Fi CERTIFIED WPA3
ⓘ
surface form:
WPA3 certification program
|
| notDesignedToProtectAgainst | online guessing with repeated protocol runs ⓘ |
| property |
binds session key to password-derived secret
ⓘ
does not reveal password to the other party ⓘ peer-to-peer symmetric protocol ⓘ |
| protectsAgainst |
key recovery from captured handshakes
ⓘ
offline dictionary attacks ⓘ password guessing attacks ⓘ |
| provides |
forward secrecy
ⓘ
mutual authentication ⓘ resistance to active man-in-the-middle attacks ⓘ resistance to passive eavesdropping ⓘ |
| replaces | WPA2 4‑way handshake in WPA3-Personal ⓘ |
| requires |
both parties to know the same password
ⓘ
interactive key exchange between peers ⓘ |
| roleInProtocolStack | authentication and key establishment phase in WPA3-Personal ⓘ |
| securityDependsOn |
hardness of discrete logarithm problem
ⓘ
hardness of elliptic curve discrete logarithm problem ⓘ strength of chosen password ⓘ |
| standardizedIn |
IEEE 802.11
ⓘ
IEEE 802.11 ⓘ
surface form:
IEEE 802.11-2016 amendment
|
| supports | multiple cryptographic groups ⓘ |
| threatModel | active and passive network attackers ⓘ |
| usedFor | deriving session keys from a shared password ⓘ |
| usedIn |
Wi‑Fi CERTIFIED WPA3
ⓘ
surface form:
WPA3-Personal
Wi‑Fi CERTIFIED WPA3 ⓘ
surface form:
Wi‑Fi Protected Access 3
|
| uses |
Curve25519-based schemes
ⓘ
surface form:
elliptic curve Diffie–Hellman
Diffie–Hellman key exchange ⓘ
surface form:
finite field Diffie–Hellman
|
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: Simultaneous Authentication of Equals Description of subject: Simultaneous Authentication of Equals is a secure password-based key exchange protocol that protects Wi‑Fi connections from offline dictionary attacks and improves authentication robustness.
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.