This document describes a cryptographically strong network authentication mechanism known as the Secure Remote Password (SRP) protocol. This mechanism is suitable for negotiating secure connections using a user-supplied password@ while eliminating the security problems traditionally associated with reusable passwords. This system also performs a secure key exchange in the process of authentication@ allowing security layers (privacy and/or integrity protection) to be enabled during the session. Trusted key servers and certificate infrastructures are not required@ and clients are not required to store or manage any long-term keys. SRP offers both security and deployment advantages over existing challenge-response techniques@ making it an ideal drop-in replacement where secure password authentication is needed.
RFC 2945-2000 history
2000RFC 2945-2000 The SRP Authentication and Key Exchange System