Implementing Zero-Knowledge Authentication with Zero Knowledge (ZKA_wzk)


Abstract


A practical web/python implementation of Zero-Knowledge Authentication protocol without any prior knowledge of the concept of Zero-Knowledge Proof.


The Zero-Knowledge Proof (http://en.wikipedia.org/wiki/Zero-knowledge_proof) is a concept used in many cryptography systems. It allows a party to prove that he/she knows something (i.e. credential), without having to send over the value of the credential. In this implementation, it will be used to prove the password of the user without sending over the actual password. The system also allows for no password hashes to be stored on the server.


The purpose of the implementation is to make implementing the Zero-Knowledge Proof Authentication portable and easily customizable. This is achieved by using python based scripts in web applications to simulate the protocol.


Full Text:

PDF