jspωiki
The SRP Authentication and Key Exchange System

Overview#

The SRP Authentication and Key Exchange System is described in RFC 2945 as a cryptographically strong network authentication mechanism known as the Secure Remote Password Protocol (SRP).

The SRP Authentication and Key Exchange System mechanism is suitable for negotiating secure connections using a user-supplied password, while eliminating the security problems traditionally associated with reusable passwords.

The SRP Authentication and Key Exchange System system also performs a secure Key-Exchange in the process of authentication, allowing security layers (privacy and/or integrity protection) to be enabled during the session.

Trusted key servers and certificate infrastructures are not required, and clients are not required to store or manage any long-term keys.

SRP offers both security and deployment advantages over existing challenge-response techniques, making it an ideal drop-in replacement where secure password authentication is needed.

More Information#

There might be more information for this subject on one of the following: