Overview#
The SRP Authentication and Key Exchange System is described in RFC 2945 as a cryptographically strong network authentication mechanism known as the Secure Remote Password Protocol (SRP).The SRP Authentication and Key Exchange System mechanism is suitable for negotiating secure connections using a user-supplied password, while eliminating the security problems traditionally associated with reusable passwords.
The SRP Authentication and Key Exchange System system also performs a secure Key-Exchange in the process of authentication, allowing security layers (privacy and/or integrity protection) to be enabled during the session.
Trusted key servers and certificate infrastructures are not required, and clients are not required to store or manage any long-term keys.
SRP offers both security and deployment advantages over existing challenge-response techniques, making it an ideal drop-in replacement where secure password authentication is needed.