I am learning the PKC topics and would like to understand about the master and session key generation process regarding NTRU.
Let's make it a scenario, if a user wants to register during the registration process, the information obtained from the user is the user's id, password and biometric (for multi-factor authentication). These elements are then hashed and sent to the server. After the authentication process, then the server will start generating the master key and share to the user.
My question is:
- How the master key will be generated? Is it based on a random number with NTRU (which the algorithm I selected)?
- After this process, the master key will be used as communication between the user and the server OR the server will generate session key and sent to the user, so the connection of server with the user can be established?
The session key can be derived based on a master key. Therefore, I am seeking for help as I am not sure how the key derivation functions work on NTRU.