Passwordless authentication with FIDO2—beyond just the web
Passwordless authentication with FIDO2—beyond just the web
Posted Feb 21, 2023 22:21 UTC (Tue) by ibukanov (subscriber, #3942)In reply to: Passwordless authentication with FIDO2—beyond just the web by mss
Parent article: Passwordless authentication with FIDO2—beyond just the web
SRP protocol, srp.stanford.edu, which is 25 years by this point, allowed to verify that one logins to the right server by checking that the server knows a hash of the password or a hash derived from a hardware token and pin. Too bad it never became popular. At one point OpenSSH even supported it solving the problem of the verification of the serer on the first login, but that was dropped long time ago...
Posted Feb 22, 2023 7:44 UTC (Wed)
by djm (subscriber, #11651)
[Link]
Passwordless authentication with FIDO2—beyond just the web
OpenSSH never supported SRP, though there were third-party patches. The whole protocol was IIRC under a patent cloud for a while.