Dirk Meyer <[email protected]> writes: > Peter Saint-Andre wrote: >> On 6/2/09 1:56 PM, Dave Cridland wrote: >>> On Tue Jun 2 18:56:35 2009, Jonathan Schleifer wrote: >>>> What if DSA gets completely broken someday? Then we're screwed. And if >>>> we want to be algorithm-independant, we need to implement something >>>> very similar to OpenPGP anyway. >>> >>> Or TLS. >>> >>> Which, incidentally, can use PGP keys. >> >> AFAIK only GnuTLS has (experimental) support for RFC 5081 > > Yes. IIRC GnuTLS is the only lib with SRP and GPG support.
There are other TLS libraries with SRP support, including: http://www.trevp.net/tlslite/ http://www.nongnu.org/jessie/ There are patches for OpenSSL to implement it as well: http://www.edelweb.fr/EdelKey/ http://rt.openssl.org/Ticket/Display.html?id=1794 > But neither is exposed in language bindings (except maybe guile). Patches welcome. ;) /Simon
