We propose a protocol framework for credential-authenticated key exchange, in which two parties aim at establishing a secure channel without a joint PKI. Both parties prove in zero-knowledge that their credentials fulfill a relationship, say that both are citizens of a certain country or that they know a password. If they both fulfill the relation, they will obtain a joint random key for secure channel establishment. Otherwise they won’t learn anything about each other.