The paper introduces a novel cryptographic protocol called Encrypted Key Exchange (EKE) that allows two parties to securely exchange confidential and authenticated information over an insecure network using a shared password. EKE combines asymmetric (public-key) and symmetric (secret-key) cryptography to protect the password from offline dictionary attacks. The protocol is designed to be secure against active attacks and can be used with various asymmetric cryptosystems, particularly exponential key exchange. The authors detail the protocol's implementation using RSA and ElGamal, addressing challenges such as partition attacks and cryptanalytic attacks. EKE has applications in secure public telephones and enhancing the security of other systems by acting as a privacy amplifier. The paper also discusses related work and concludes by emphasizing the importance of protecting users with weak passwords.The paper introduces a novel cryptographic protocol called Encrypted Key Exchange (EKE) that allows two parties to securely exchange confidential and authenticated information over an insecure network using a shared password. EKE combines asymmetric (public-key) and symmetric (secret-key) cryptography to protect the password from offline dictionary attacks. The protocol is designed to be secure against active attacks and can be used with various asymmetric cryptosystems, particularly exponential key exchange. The authors detail the protocol's implementation using RSA and ElGamal, addressing challenges such as partition attacks and cryptanalytic attacks. EKE has applications in secure public telephones and enhancing the security of other systems by acting as a privacy amplifier. The paper also discusses related work and concludes by emphasizing the importance of protecting users with weak passwords.