SAE handshake

E453436

Wi‑Fi security protocol component authenticated key exchange protocol cryptographic protocol password-authenticated key exchange protocol

SAE handshake is a password-based authenticated key exchange protocol used in modern Wi‑Fi security (notably WPA3) to securely establish encryption keys while resisting offline dictionary attacks.

Try in SPARQL Jump to: Statements Referenced by

Statements (47)

Predicate	Object
instanceOf	Wi‑Fi security protocol component ⓘ authenticated key exchange protocol ⓘ cryptographic protocol ⓘ password-authenticated key exchange protocol ⓘ
alsoKnownAs	SAE NERFINISHED ⓘ Simultaneous Authentication of Equals NERFINISHED ⓘ
basedOn	Dragonfly key exchange NERFINISHED ⓘ
definedBy	Wi‑Fi Alliance WPA3 specifications NERFINISHED ⓘ
designedToMitigate	offline dictionary attacks on Wi‑Fi passwords ⓘ password guessing from captured handshakes ⓘ
hasProperty	forward secrecy ⓘ mutual authentication ⓘ password-based ⓘ resistance to key compromise impersonation (KCI) ⓘ resistance to offline brute-force attacks ⓘ resistance to passive eavesdropping ⓘ
hasPurpose	provide mutual authentication between Wi‑Fi stations ⓘ resist offline dictionary attacks ⓘ securely establish encryption keys between peers ⓘ
hasStep	commit exchange ⓘ confirm exchange ⓘ
operatesBetween	Wi‑Fi station and access point ⓘ two peers with a shared password ⓘ
precedes	4-way handshake in WPA3 ⓘ
prevents	deriving password from a single captured handshake ⓘ
produces	pairwise master key (PMK) ⓘ shared session key ⓘ
relatedTo	4-way handshake ⓘ WPA2-Personal ⓘ Wi‑Fi Protected Access NERFINISHED ⓘ
replaces	PSK-based 4-way handshake in WPA2-Personal ⓘ
requires	both parties to know the same password ⓘ
securityGoal	confidentiality of session keys ⓘ integrity of authentication process ⓘ mutual entity authentication ⓘ
standardizedIn	IEEE 802.11-2016 amendment NERFINISHED ⓘ IEEE 802.11ax-related security specifications NERFINISHED ⓘ
supports	protection against active man-in-the-middle attacks (under assumptions of PAKE security) ⓘ protection against passive attackers ⓘ
usedFor	Wi‑Fi network access control ⓘ establishing secure data encryption keys on Wi‑Fi links ⓘ
usedIn	WPA3-Personal NERFINISHED ⓘ Wi‑Fi Protected Access 3 NERFINISHED ⓘ modern Wi‑Fi security ⓘ
usesInput	finite cyclic group parameters ⓘ random nonces ⓘ shared password ⓘ

Referenced by (1)

Full triples — surface form annotated when it differs from this entity's canonical label.

Simultaneous Authentication of Equals → alsoKnownAs → SAE handshake ⓘ