Server Performance, cont’d

• If PDM is secure enough with smaller modulus, further server performance gain:

  • with a modulus half as big, an exponentiation takes 1/8 as much work
  • therefore it’s 1/16 as much work for the server as a scheme designed for mutual authentication, since PDM requires only one exponentiation
  • Modulus size: how many MIP-years are required per password guess?

Previous slide

Next slide

Back to first slide

View graphic version