How is SRP used in Clipperz?
58 views
Skip to first unread message
makerofthings7
Mar 18, 2012, 2:41:26 PM3/18/12
to Clipperz
I heard that Clipperz uses SRP. Can you explain how you use it
(generally speaking)?
I referred to your company here: http://security.stackexchange.com/q/12850/396
(generally speaking)?
I referred to your company here: http://security.stackexchange.com/q/12850/396
thomasg
Mar 18, 2012, 9:30:16 PM3/18/12
to makerof...@gmail.com, Clipperz
> You received this message because you are subscribed to the Google Groups "Clipperz" group.
> To post to this group, send email to clip...@googlegroups.com.
> To unsubscribe from this group, send email to clipperz+u...@googlegroups.com.
> For more options, visit this group at http://groups.google.com/group/clipperz?hl=en.
>
Like most Clipperz features, SRP is implemented in JavaScript and thus
executed in the browser locally, even though the browser itself does
not natively support SRP.
That's generally the concept behind Clipperz: execute security
relevant stuff in the browser via JavaScript and only store absolutely
necessary data on the server unencrypted.
The code is here:
https://github.com/clipperz/password-manager/blob/master/frontend/gamma/js/Clipperz/Crypto/SRP.js
Reply all
Reply to author
Forward
0 new messages