[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: SCRAM methods
|
From: |
Jeremy Harris |
|
Subject: |
Re: SCRAM methods |
|
Date: |
Mon, 6 Jan 2020 11:38:49 +0000 |
|
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.2.2 |
On 06/01/2020 11:06, Simon Josefsson wrote:
[client side]
> My conclusion is that clients should store SaltedPassword/Salt/Itercnt.
> I'm not sure adding support for CLIENTKEY/SERVERKEY is really worth the
> trouble. Cyrus SASL only seems to support raw clear-text passwords in
> the client.
>
> Am I missing something?
Are compute-costs likely to be an issue for the clients likely to
use gsasl? Option 3 does take out two hmac operations versus option2.
Probably not large compared to the saving of the Hi() gained by 2 over
1.
--
Cheers,
Jeremy
- Re: SCRAM methods, (continued)
- Re: SCRAM methods, Simon Josefsson, 2020/01/03
- Re: SCRAM methods, Jeremy Harris, 2020/01/03
- Re: SCRAM methods, Simon Josefsson, 2020/01/03
- Re: SCRAM methods, Jeremy Harris, 2020/01/03
- Re: SCRAM methods, Jeremy Harris, 2020/01/05
- Re: SCRAM methods, Simon Josefsson, 2020/01/06
- Re: SCRAM methods, Jeremy Harris, 2020/01/06
- Re: SCRAM methods, Simon Josefsson, 2020/01/14
- Re: SCRAM methods, Jeremy Harris, 2020/01/14
- Re: SCRAM methods,
Jeremy Harris <=
RE: SCRAM methods, - Neustradamus -, 2020/01/03
RE: SCRAM methods, - Neustradamus -, 2020/01/03
Re: SCRAM methods, Simon Josefsson, 2020/01/15