SRP Links and Web Resources

SRP is available in a rapidly growing collection of libraries and applications. If I have omitted anything relevant on this page, let me know.

SRP-TLS

The SRP-TLS ciphersuites (RFC 5054), combine strong password authentication and transport security for easy integration and deployment in applications that need secure sessions based on human-memorized passwords.

The EdelKey project has implemented the SRP ciphersuites in OpenSSL. Also available are patches to enable SRP in Apache/mod_ssl and cURL/libcURL. The download page on this site hosts TLS-SRP patches against the latest OpenSSL releases.
TLSLite is a Python implementation of SSL/TLS which includes support for the SRP ciphersuites.
GnuTLS supports the SRP ciphersuites natively.
BouncyCastle is in the process of adding TLS-SRP support in their Java API. See their mailing list for status updates.
Jessie, a free JSSE implementation, supports the SRP ciphersuites in Java.
SecureBlackBox supports SRP ciphersuites
How to set up TLS-SRP with Apache/mod_gnutls

SRP Implementations

BouncyCastle
BouncyCastle has an implementation of SRP key agreement.
GNU Crypto
GNU Crypto supports SRP-6 as a Key Agreement Protocol.
JavaScript Crypto Library
An extensive and efficient set of cryptographic functions, including a JavaScript implementation of the SRP protocol.
SRPForJava
A Java implementation of SRP.
FreshPorts
Links to the FreeBSD port of the SRP distribution.
TinySRP
SRP library with a very small footprint.
srp-js
Another implementation of SRP in JavaScript.
srp4net
SRP in C#/WSE

SRP Telnet

The Kermit Project
The Kermit project distributes C-Kermit and Kermit95, Telnet clients that support nearly every Unix and win32 platform in common use today. SRP, Kerberos, and other popular Telnet authentication methods are supported.
NetTerm
NetTerm is a popular Windows (95, 98, NT, 2k, 3.1) Telnet client with SRP support.
Anzio Lite and AnzioWin
Anzio Lite and AnzioWin are Win32 Telnet clients (the first is shareware, the latter is the commercial version which includes SRP support).
The Java Telnet Applet
The Java Telnet Applet is a Telnet client written entirely in Java with support for SRP. The Applet can be embedded on a Web page to enable remote users to telnet in via a Web browser.
dataComet
DataComet is a popular Mac Telnet client that supports SRP authentication.
NiftyTelnet
NiftyTelnet is a Telnet client for the Mac. The next release of NiftyTelnet will contain SRP support. Please contact the author, Chris Newman for details.
MiamiTelnet
MiamiTelnet is a part of the Miami TCP/IP suite for AmigaOS, and supports a wide variety of secure Telnet features like SRP.
ProFTPD
ProFTPD is an FTP package with full source and SRP support.

SRP-SASL

The Cryptix SASL Library
Cryptix, an widely-supported Open Source software development effort, offers a Java implementation of the proposed SRP SASL mechanism.

SRP authentication in SSH

Tom Holroyd has patches to enable SRP authentication in OpenSSH.
LSH (SSH implementation)
LSH is a GNU implementation of Secure Shell (SSH) that will incorporate SRP as a supported authentication mechanism.

SRP in other applications

JBoss
JBoss is an Open Source Java application server which supports SRP for user authentication.
GoToMeeting
GoToMeeting, currently being sold by Citrix, uses SRP for user authentication.
Clipperz password manager
A Web-based password manager that uses SRP as its authentication protocol.
The WorldForge Project
The WorldForge Project uses SRP to authenticate individual players securely to central roleplaying game (RPG) servers.
SFS
SFS is a secure network file system that runs on a variety of operating systems and uses SRP for secure network user authentication.
Samhain
Samhain is a open-source host-based intrusion detection system (HIDS) that uses SRP authentication.
Access Remote PC
Access Remote PC uses SRP to password-protect remote login sessions.

Other Strong Password Methods

jablon.org - David Jablon's site, with discussion about SPEKE and information about strong password authentication
PAK - Philip MacKenzie has released a toolkit for his PAK authentication protocol, an EKE variant. The PAK distribution is based on the SRP distribution, available from this site.

Other Crypto Resources

Back