[JDEV] New Secure Authentication Mechanism
Chris Chen
ckchris at idream.net
Sun May 19 05:29:22 CDT 2002
Hi,
Has anyone considered RFC 2945 (SRP implementation) as perhaps an
alternative form of authentication for Jabber?
I personally think that 0k authentication is a little unwieldy because you
have to periodically update the counter when it hits zero.
With SRP, password authenticate is transmitted securely without a need for
certificate-based or public key-based authentication.
What do you guys think?
Chris
PGP at ldap://certserver.pgp.com/
More information about the JDev
mailing list