[Cryptography] DSAuth: public key authentication for the web

Stephen Farrell stephen.farrell at cs.tcd.ie
Thu Oct 16 14:32:58 EDT 2014

On 15/10/14 21:57, Brian Gomes Bascoy wrote:
> Hi! I am working on a small protocol for password-less authentication
> using ECDSA, for the world wide web. I already have a functional
> prototype which you can play with in here:
> https://github.com/pera/dsauth/
> In some way it's similar to the SSH's public key authentication method.
> I'm using SJCL inside an user-friendly Chrome extension that manage the
> key pairs and do all the client-side part, and also coded a Node.js web
> service for testing.
> I'm looking for any kind of comments, or even contributors :)

Be interested in how that compares to [1] which
is (cross fingers) almost done processing in the
IETF. See also [2] for an implementation.


[1] https://tools.ietf.org/html/draft-ietf-httpauth-hoba
[2] https://hoba.ie/

> Thank you very much!
> _______________________________________________
> The cryptography mailing list
> cryptography at metzdowd.com
> http://www.metzdowd.com/mailman/listinfo/cryptography

More information about the cryptography mailing list