opaque-ke
A Rust implementation of the OPAQUE password-authenticated key exchange protocol for secure password-based authentication.
What is opaque-ke?
OPAQUE-ke is a Rust implementation of the OPAQUE (Augmented Password Authenticated Key Exchange) protocol. It enables clients to authenticate to servers using passwords without ever exposing plaintext passwords to the server, providing strong security against pre-computation attacks and eliminating the need for traditional PKI during authentication.
Developers building secure authentication systems, particularly those implementing password-based login for client-server applications without wanting to expose passwords to the server. This includes teams working on end-to-end encrypted backup systems, secure messaging platforms, and applications requiring strong password authentication.
Developers choose OPAQUE-ke because it's a formally verified, RFC 9807-compliant implementation that provides password authentication without server-side password exposure, eliminating risks from server breaches while operating without PKI dependencies during authentication. It offers cryptographic rigor with practical deployment simplicity compared to traditional password storage methods.
Overview
An implementation of the OPAQUE password-authenticated key exchange protocol
Use Cases
Best For
Related Projects
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.
