How to Sync with Alice

  • Feng Hao
  • Peter Y. A. Ryan
Part of the Lecture Notes in Computer Science book series (LNCS, volume 7114)


This paper explains the sync problem and compares solutions in Firefox 4 and Chrome 10. The sync problem studies how to securely synchronize data across different computers. Google has added a built-in sync function in Chrome 10, which uses a user-defined password to encrypt bookmarks, history, cached passwords etc. However, due to the low-entropy of passwords, the encryption is inherently weak – anyone with access to the ciphertext can easily uncover the key (and hence disclose the plaintext). Mozilla used to have a very similar sync solution in Firefox 3.5, but since Firefox 4 it has made a complete change of how sync works in the browser. The new solution is based on a security protocol called J-PAKE, which is a balanced Password Authenticated Key Exchange (PAKE) protocol. To our best knowledge, this is the first large-scale deployment of the PAKE technology. Since PAKE does not require a PKI, it has compelling advantages than PKI-based schemes such as SSL/TLS in many applications. However, in the past decade, deploying PAKE has been greatly hampered by the patent and other issues. With the rise of patent-free solutions such as J-PAKE and also that the EKE patent will soon expire in October, 2011, we believe the PAKE technology will be more widely adopted in the near future.


Security Protocol Dictionary Attack Secret Code Knowledge Proof Active Attacker 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. 1.
    Hao, F., Ryan, P.: J-PAKE: Authenticated Key Exchange Without PKI. In: Gavrilova, M.L., Tan, C.J.K., Moreno, E.D. (eds.) Transactions on Computational Science XI, Part II. LNCS, vol. 6480, pp. 192–206. Springer, Heidelberg (2010)CrossRefGoogle Scholar
  2. 2.
    Hao, F., Ryan, P.Y.A.: Password Authenticated Key Exchange by Juggling. In: Christianson, B., Malcolm, J.A., Matyas, V., Roe, M. (eds.) Security Protocols 2008. LNCS, vol. 6615, pp. 159–171. Springer, Heidelberg (2011)CrossRefGoogle Scholar
  3. 3.
  4. 4.
  5. 5.
    Bellovin, S., Merritt, M.: Encrypted Key Exchange: password-based protocols secure against dictionary attacks. In: Proceedings of the IEEE Symposium on Research in Security and Privacy (May 1992)Google Scholar
  6. 6.
    Bellovin, S., Merritt, M.: Cryptographic protocol for secure communications, U.S. Patent 5,241,599Google Scholar
  7. 7.
    Jablon, D.: Strong password-only authenticated key exchange. ACM Computer Communications Review 26(5), 5–26 (1996)CrossRefGoogle Scholar
  8. 8.
    Jablon, D.: Cryptographic methods for remote authentication, U.S. Patent 6,226,383 (March 1997)Google Scholar
  9. 9.
    Jaspan, B.: Dual-workfactor Encrypted Key Exchange: efficiently preventing password chaining and dictionary attacks. In: Proceedings of the Sixth Annual USENIX Security Conference, pp. 43–50 (July 1996)Google Scholar
  10. 10.
    IEEE P1363.2 Working Group, P1363.2: Standard Specifications for Password-Based Public-Key Cryptographic Techniques, draft available at
  11. 11.
    Zhang, M.: Analysis of the SPEKE password-authenticated key exchange protocol. IEEE Communications Letters 8(1), 63–65 (2004)CrossRefGoogle Scholar
  12. 12.
    Hao, F.: On small subgroup non-confinement attacks. In: Proceedings of the 10th IEEE International Conference on Computer and Information Technology, CIT 2010, pp. 1022–1025 (2010)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2011

Authors and Affiliations

  • Feng Hao
    • 1
  • Peter Y. A. Ryan
    • 2
  1. 1.School of Computing ScienceNewcastle UniversityNewcastleUK
  2. 2.Faculty of ScienceUniversity of LuxembourgLuxembourg

Personalised recommendations