http://www.ietf.org/internet-drafts/draft-moskowitz-shared-secret-provprotocol-00.txt I already have one erratta: I left out the logic in the protocol for the case where the SSPP server cannot validate the signature sent by the client. Robert Moskowitz TruSecure Corporation Security Interest EMail: rgm-sec at htt-consult.com