Provable Security and Privacy Analysis of WPA3’s SAE and SAE-PK Protocol

May 28, 2026
Olga Sanina, TU Darmstadt; Kim Laine, Microsoft

Speakers: Olga Sanina
Host: Kim Laine

SAE and SAE-PK are the core security protocols introduced in the latest Wi-Fi security standard, WPA3, to protect personal networks. SAE-PK extends SAE to prevent the so-called evil twin attacks, in which an attacker with knowledge of the password attempts to impersonate a legitimate access point. This is achieved by using a secret key for a signature, with the corresponding public key fingerprinted into the password. In this talk, we will present a formal security model that captures this intended property and show the guarantees the protocol provides. As part of this, we formalize a cryptographic primitive called randomized fingerprinting and analyze the security guarantees of the password generation and public-key verification algorithms introduced in SAE-PK. We show that SAE-PK is indeed secure against evil twin attacks, but its current design introduces a theoretical vulnerability to offline dictionary attacks. To remedy this, we show that SAE-PK can be modified with minimal changes to fully realize its desired security goals.

- Olga Sanina
  
  PhD Studen
  
  TU Darmstadt
- Kim Laine
  
  Principal Researcher
Research Area
- Security, privacy, and cryptography

Series: Cryptography Talk Series

Provable Security and Privacy Analysis of WPA3’s SAE and SAE-PK Protocol
May 28, 2026
Olga Sanina,

Kim Laine
Emerging Hardware Acceleration for Fully Homomorphic Encryption
May 14, 2026
Patrick Longa,

Minxuan Zhou
Language-Agnostic Detection of Bugs in Zero-Knowledge Proof Programs
April 23, 2026
Greg Zaverucha,

Arman Kolozyan
CROSS — Leveraging AI ASICs for Homomorphic Encryption
February 26, 2026
Jianming Tong
Hardware Realization and Implementation Security Evaluation of HQC, A NIST PQC Standard
January 29, 2026
Sanjay Deshpande
Efficient Homomorphic Integer Computer from CKKS
January 28, 2026
Jaehyung Kim
Fuzzy Extractors are Practical
January 21, 2026
Melissa Chase,

Amey Shukla
IronDict: Transparent Dictionaries from Polynomial Commitments
October 9, 2025
Hossein Hafezi,

Melissa Chase
Knowledge-Coin Fair Exchange
September 16, 2025
Designing safe digital systems for the humanitarian sector
September 16, 2025
Lattice-Based Accumulator and Application to Anonymous Credential Revocation
August 26, 2025
Victor Youdom Kemmoe,

Betül Durak
Efficient Secure Aggregation for Federated Learning
July 30, 2025
Varun  Madathil,

Melissa Chase
Precio: Private Aggregate Measurement via Oblivious Shuffling
June 12, 2025
Melissa Chase
Sandi: A System for Accountability
May 29, 2025
Kim Laine
Towards Safer Augmented Reality: Identifying, Evaluating, and Mitigating Security & Privacy Threats
April 17, 2025
Kaiming Cheng
Hamming Quasi-Cyclic
April 10, 2025
Edoardo Persichetti
Differentially Private Synthetic Data without Training
March 20, 2025
How to Compress Garbled Circuit Input Labels, Efficiently
February 27, 2025
Hanjun Li
Attestations over TLS 1.3 and ZKP
February 6, 2025
Sofía Celi
A Closer Look at Falcon
November 8, 2024
Jonas Janneck
Quantum Lattice Enumeration in Limited Depth, Fernando Virdia
August 28, 2024
Fernando Virdia
Fake It till You Make It: Enhancing Security of Bluetooth Secure Connections via Deferrable Authentication
August 26, 2024
Olga Sanina
Improving the Security of United States Elections with Robust Optimization
June 27, 2024
Brad Sturt
TrustRate: A Decentralized Platform for Hijack-Resistant Anonymous Reviews
April 5, 2024
Rohit Dwivedula

Your Privacy Choices