aboutsummaryrefslogtreecommitdiffstats
path: root/README
diff options
context:
space:
mode:
authorMattias Andrée <maandree@kth.se>2021-04-13 01:57:43 +0200
committerMattias Andrée <maandree@kth.se>2021-04-13 01:57:52 +0200
commit6aa98cdd0cd9e6a0d4c769bbf0327492ccc28f42 (patch)
tree19b4b0df0965c19df2924ad14124ad295555a8d6 /README
parentMake some fixes and add demos (diff)
downloadsecauth-6aa98cdd0cd9e6a0d4c769bbf0327492ccc28f42.tar.gz
secauth-6aa98cdd0cd9e6a0d4c769bbf0327492ccc28f42.tar.bz2
secauth-6aa98cdd0cd9e6a0d4c769bbf0327492ccc28f42.tar.xz
Add readme
Signed-off-by: Mattias Andrée <maandree@kth.se>
Diffstat (limited to 'README')
-rw-r--r--README16
1 files changed, 16 insertions, 0 deletions
diff --git a/README b/README
new file mode 100644
index 0000000..1461186
--- /dev/null
+++ b/README
@@ -0,0 +1,16 @@
+secauth is a protocol for authentication.
+
+It is not a secure alternative to encrypted
+communcation, nor is it a password hashing algorithm,
+but is used between the two.
+
+If used correctly, secauth ensures the server owner,
+or someone with access to the server, does not get
+access to the user's plain-text password. It also
+gives the user a lower bound for the security with
+which the server is treating the password.
+
+Additionally, if an attacker breaks the communication
+encryption, he will not access to the user's plain-text
+password and the information he gets access to is not
+reusable.