[keycloak-user] SRP (Secure remote password)

Sunday, 23 September 2018

Hi,
Do you know SRP (Secure remote password,
https://en.wikipedia.org/wiki/Secure_Remote_Password_protocol) ?
It's the RFC 2945(https://tools.ietf.org/html/rfc2945), 5054(
https://tools.ietf.org/html/rfc5054) and I think it's very interesting the
idea of not transfering the password to the server.
There are 1Password and Protonmail who implementing it for their app
https://blog.agilebits.com/2018/02/14/how-we-use-srp-and-you-can-too/
https://protonmail.com/blog/encrypted_email_authentication/

So first, what do you guys think about SRP (Secure remote password) ?
And second : Do you thought of implementing it in Keycloak ?

Thanks

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

[keycloak-user] SRP (Secure remote password)