canmove, Confirmed users
725
edits
Services/KeyExchange: Difference between revisions
→Overview
| Line 39: | Line 39: | ||
<ul> | <ul> | ||
<li>Mobile and Desktop complete the two roundtrips of JPAKE messages to agree upon a strong secret K</li> | <li>Mobile and Desktop complete the two roundtrips of JPAKE messages to agree upon a strong secret K</li> | ||
<li>A 256 bit key is derived from K using HMAC-SHA256.</li> | <li>A 256 bit key is derived from K using HMAC-SHA256 using a fixed salt.</li> | ||
<li>The encryption and HMAC keys are derived from that 256 bit key using HMAC-SHA256.</li> | <li>The encryption and HMAC keys are derived from that 256 bit key using HMAC-SHA256.</li> | ||
<li>In third round trip: | <li>In third round trip: | ||