nmctp

No more clear text passwords

Stop the nonsense

No Key: a simple library for Shamir’s no-key protocol

Shamir’s no-key protocol is a way to encrypt a communication using finite exponentiation. It is similar to Diffie-Hellman in that it depends on the difficulty of solving the discrete logarithm problem, but unlike DH, where both parties agree on a previously unkown datum, the no-key protocol is used to share information (party A transmit some data to party B).

The algorithm is as follows. Assume A wants to transmit message m (which is an integer number) to B. Both parties have previuosly agreed on a prime number p, which can be public.

A chooses a random number 0<=q1<p such that q1 and (p-1) are relatively prime, and computes
m1 = pow(m,q1) mod (p), where pow(a,b) is the exponentiation a to the power b.
Then A sends m1 to B.
B chooses a random number 0<=q2<p such that q1 and (p-1) are relatively prime and computes
m2 = pow(q1,q2) mod (p)
and sends m2 back to A.
A computes q1*, the inverse of q1 modulo (p-1) (not modulo p) and sends m3 = pow(m2,q1*) mod (p) to B.
B comptues q2*, the inverse of q2 modulo (p-1) and m4 = pow(m3,q2*) mod (p).
This last m4 is equal to m and B has the initial message

About nmctp

nmctp.com is a project to stop the nonsense regarding passwords used in the login protocols of most Web 2.0 projects: they are sent in the clear, shamelessly, with absolutely no care for privacy, and without warning the users.

nmctp

No more clear text passwords

No Key: a simple library for Shamir’s no-key protocol

About nmctp

Recent News

Documentation