Blog

What is Secure Remote Authentication Protocol (SRP)?

researchgate.net
In layman's terms, during SRP (or any other

Password-authenticated key agreement

In cryptography, a password-authenticated key agreement method is an interactive method for two or more parties to establish cryptographic keys based on one or more party's knowledge of a password.

protocol) authentication, one party (the "client" or "user") demonstrates to another party (the "server") that they know the password, without sending the password itself nor any other information from which the password can be derived.

What is SRP and how does it work?

  • SRP is a secure augmented password-authenticated key agreement (PAKE) protocol that solves the problem of exchanging secrets securely over an untrusted network. It is a zero-knowledge proof protocol, where the server doesn’t have to store password equivalently information (hashed version), and clients can securely authenticate to the server.

How to initiate SRP password verification in a custom flow?

  • To initiate SRP password verification in a custom flow, the app calls InitiateAuth with CUSTOM_AUTH as the Authflow. It includes in the AuthParameters map SRP_A: (the SRP A value) and CHALLENGE_NAME: SRP_A .

What are SRP ciphersuites?

  • The SRP ciphersuites have become established as the solution for secure mutual password authentication in SSL/TLS, solving the common problem of establishing a secure communications session based on a human-memorized password in a way that is crytographically sound, standardized, peer-reviewed, and has multiple interoperating implementations .

What is Secure Remote Authentication Protocol (SRP)?What is Secure Remote Authentication Protocol (SRP)?

The S ecure R emote P assword protocol performs secure remote authentication of short human-memorizable passwords and resists both passive and active network attacks.

image-What is Secure Remote Authentication Protocol (SRP)?
image-What is Secure Remote Authentication Protocol (SRP)?
Related

What does SRP_a indicate?What does SRP_a indicate?

What does SRP_A indicate where to find it. I have searched for this problem and It is suggested to use the admin_initiate_auth method for signing in a user which I don't believe a best practice. Yes, SRP_A is a large integer as defined by the Secure Remote Password Protocol. Are you trying to do SRP or just authenticate with username and password.

Related

How to initiate SRP password verification in a custom flow?How to initiate SRP password verification in a custom flow?

To initiate SRP password verification in a custom flow, the app calls InitiateAuth with CUSTOM_AUTH as the Authflow. It includes in the AuthParameters map SRP_A: (the SRP A value) and CHALLENGE_NAME: SRP_A .

Related

What are SRP ciphersuites?What are SRP ciphersuites?

The SRP ciphersuites have become established as the solution for secure mutual password authentication in SSL/TLS, solving the common problem of establishing a secure communications session based on a human-memorized password in a way that is crytographically sound, standardized, peer-reviewed, and has multiple interoperating implementations .

Share this Post: