Simple Password-authenticated Exponential Key Exchange - an authentication method, based on a Diffie-Hellman key exchange, that provides strong authentication using small passwords. SPEKE does not require a certificate for either client or server. SPEKE protects passwords and user information during the authentication dialog, allowing customers to take advantage of existing password models. It may be implemented as an EAP method, and does not require any PKI support or certificate infrastructure.