The Secure Remote Password (SRP) Protocol

The Security Remote Password (SRP) protocol is an implementation of a public key exchange handshake described in the Internet standards working group request for comments 2945 (RFC2945) available from ftp://ftp.isi.edu/in-notes/rfc2945.txt. The RFC2945 abstract highlights that SRP is a cryptographically strong authentication mechanism that is based on simple string passwords, and can be used as a secure replacement for existing unsecured password authentication procedures. The heart of SRP is a key exchange algorithm that does not require key servers and certificates singed by trusted sources unlike SSL. These properties make SRP an ideal drop-in replacement for password based authentication mechanisms ...

Get JBoss™ Administration and Development now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.