Kris Kennaway wrote:
>
> On Sat, 14 Aug 1999, Sheldon Hearn wrote:
>
> > On Fri, 13 Aug 1999 23:42:48 MST, "Dave Walton" wrote:
> >
> > > If you really want to work on an encrypted telnet, check out The
> > > Stanford SRP Authentication Project (http://srp.stanford.edu/srp/).
> > > I'd love to see SRP integrated into the FreeBSD telnet/telnetd.
> >
> > Cool, another non-exportable system available to US users only. :-)
>
> Not true: SRP used for authentication only does exponentiation and modulo
> operation on large integers..no cryptographic primitives, so it's freely
> exportable. The SRP distribution does also contain code which encrypts the
> data stream after authentication, which is restricted from export, but on
> the other hand it's also not hard to put back.
SRA is not in the same boat there. It uses Diffie-Hellmen to obtain a
shared
secret and then passes the authentication information from client to
server with DES.
S/MIME Cryptographic Signature
