Simultaneous Authentication of Equals

E121933

Simultaneous Authentication of Equals is a secure password-based key exchange protocol that protects Wi‑Fi connections from offline dictionary attacks and improves authentication robustness.

All labels observed (1)

Label Occurrences
Simultaneous Authentication of Equals canonical 1

How this entity was disambiguated

Statements (47)

Predicate Object
instanceOf Wi‑Fi authentication method
cryptographic protocol
password-authenticated key exchange protocol
abbreviation SAE
alsoKnownAs Dragonfly handshake in Wi‑Fi context
SAE handshake
basedOn Dragonfly key exchange
category password-authenticated key exchange
comparedTo WPA2-PSK 4‑way handshake
definedBy Wi‑Fi Alliance
surface form: Wi‑Fi Alliance for WPA3
designedFor Wi‑Fi networks
pre-shared key environments
goal improve robustness of Wi‑Fi authentication
prevent offline password cracking from captured traffic
hasFeature no password-equivalent data stored on access point
prevents reuse of captured handshakes for password testing
implementedIn modern Wi‑Fi access points supporting WPA3
modern Wi‑Fi client devices supporting WPA3
improvesOn resistance to offline attacks compared to WPA2-PSK
introducedIn Wi‑Fi CERTIFIED WPA3
surface form: WPA3 certification program
notDesignedToProtectAgainst online guessing with repeated protocol runs
property binds session key to password-derived secret
does not reveal password to the other party
peer-to-peer symmetric protocol
protectsAgainst key recovery from captured handshakes
offline dictionary attacks
password guessing attacks
provides forward secrecy
mutual authentication
resistance to active man-in-the-middle attacks
resistance to passive eavesdropping
replaces WPA2 4‑way handshake in WPA3-Personal
requires both parties to know the same password
interactive key exchange between peers
roleInProtocolStack authentication and key establishment phase in WPA3-Personal
securityDependsOn hardness of discrete logarithm problem
hardness of elliptic curve discrete logarithm problem
strength of chosen password
standardizedIn IEEE 802.11
IEEE 802.11
surface form: IEEE 802.11-2016 amendment
supports multiple cryptographic groups
threatModel active and passive network attackers
usedFor deriving session keys from a shared password
usedIn Wi‑Fi CERTIFIED WPA3
surface form: WPA3-Personal

Wi‑Fi CERTIFIED WPA3
surface form: Wi‑Fi Protected Access 3
uses Curve25519-based schemes
surface form: elliptic curve Diffie–Hellman

Diffie–Hellman key exchange
surface form: finite field Diffie–Hellman

How these facts were elicited

Referenced by (1)

Full triples — surface form annotated when it differs from this entity's canonical label.

Wi‑Fi CERTIFIED WPA3 uses Simultaneous Authentication of Equals