Strong, Password only Encryption -SRP

Sam Hartman hartmans at MIT.EDU
Fri Jan 30 13:00:04 EST 2004


>>>>> "Jeffrey" == Jeffrey Altman <jaltman at columbia.edu> writes:

    Jeffrey> http://www.ietf.org/ietf/IPR/PHOENIX-SRP-RFC2945.txt Is
    Jeffrey> the letter from Phoenix to the IETF stating that they
    Jeffrey> have patent claims on SPEKE and SRP and that they are
    Jeffrey> willing to license not give away.

    Jeffrey> The subject is still closed.


There are multiple subjects here.  I know of someone who is working on
a SRP draft for Kerberos preauth support.  This draft is expected to
be submitted to the IETF.

The question of whether this draft will be standards track or
informational is interesting.

The question of whether SRP will be mandatory to implement is not
interesting; the answer is no.

The question of whether MIT will implement SRP has not been discussed
to my knowledge.



More information about the krbdev mailing list