Actions
Feature #27770
open
Login password transmission through SRP-6a
Status:
New
Priority:
High
Assignee:
-
Category:
Accounts / authentication
Target version:
-
Start date:
Due date:
% Done:
0%
Estimated time:
Resolution:
Description
Implementation of SRP in password transmission for any authentication source relying upon password, stored or not in the database.
It should be seen as a security mean alternative or not to SSL/TLS.
It should allow stronger authentication security, even without SSL/TLS.
References:
http://srp.stanford.edu
https://rubygems.org/gems/srp-rb/versions/1.0.1
https://github.com/lamikae/srp-rb
No data to display
Actions