diff options
author | Mattias Andrée <maandree@kth.se> | 2021-04-13 01:57:43 +0200 |
---|---|---|
committer | Mattias Andrée <maandree@kth.se> | 2021-04-13 01:57:52 +0200 |
commit | 6aa98cdd0cd9e6a0d4c769bbf0327492ccc28f42 (patch) | |
tree | 19b4b0df0965c19df2924ad14124ad295555a8d6 | |
parent | Make some fixes and add demos (diff) | |
download | secauth-6aa98cdd0cd9e6a0d4c769bbf0327492ccc28f42.tar.gz secauth-6aa98cdd0cd9e6a0d4c769bbf0327492ccc28f42.tar.bz2 secauth-6aa98cdd0cd9e6a0d4c769bbf0327492ccc28f42.tar.xz |
Add readme
Signed-off-by: Mattias Andrée <maandree@kth.se>
-rw-r--r-- | README | 16 |
1 files changed, 16 insertions, 0 deletions
@@ -0,0 +1,16 @@ +secauth is a protocol for authentication. + +It is not a secure alternative to encrypted +communcation, nor is it a password hashing algorithm, +but is used between the two. + +If used correctly, secauth ensures the server owner, +or someone with access to the server, does not get +access to the user's plain-text password. It also +gives the user a lower bound for the security with +which the server is treating the password. + +Additionally, if an attacker breaks the communication +encryption, he will not access to the user's plain-text +password and the information he gets access to is not +reusable. |