Kris Kennaway wrote: > > On Sat, 14 Aug 1999, Sheldon Hearn wrote: > > > On Fri, 13 Aug 1999 23:42:48 MST, "Dave Walton" wrote: > > > > > If you really want to work on an encrypted telnet, check out The > > > Stanford SRP Authentication Project (http://srp.stanford.edu/srp/). > > > I'd love to see SRP integrated into the FreeBSD telnet/telnetd. > > > > Cool, another non-exportable system available to US users only. :-) > > Not true: SRP used for authentication only does exponentiation and modulo > operation on large integers..no cryptographic primitives, so it's freely > exportable. The SRP distribution does also contain code which encrypts the > data stream after authentication, which is restricted from export, but on > the other hand it's also not hard to put back.
SRA is not in the same boat there. It uses Diffie-Hellmen to obtain a shared secret and then passes the authentication information from client to server with DES.
smime.p7s
Description: S/MIME Cryptographic Signature
