SRP secure remote password authentication

Jeremy Nysen jnysen-openssh at
Wed Sep 17 16:03:44 EST 2003

--On Wednesday, 17 September 2003 3:26 PM +1000 Damien Miller <djm at> wrote:
> Jeremy Nysen wrote:
>> Are there any plans to include support for SRP or a similar
>> zero-knowledge password protocol into OpenSSH?
> No, they are tainted by patents.

Are these (software?) patents licensable in any way that disencumbers their use in 
OpenSSH (under the BSD license)? Also, are these particular patents a USA only problem, 
or are some granted in other countries?

It seems that software patents are a growing concern around the world, with the USA 
seeming to be beyond hope.

Anyway, it would be great to have an SRP type authentication built into OpenSSH - without 
resorting to patching the source with Dr. Tom Holroyd's patch everytime a new version is 


More information about the openssh-unix-dev mailing list