LinusU
commented
4 years ago An implementation could choose to use x = H(s | I | p) without affecting any steps required of the host. The standard RFC2945 defines x = H(s | H ( I | ":" | p) ). Use of I within x avoids a malicious server from being able to learn if two users share the same password.
ref:
- https://en.wikipedia.org/wiki/Secure_Remote_Password_protocol
- https://crypto.stackexchange.com/questions/8626/why-is-tls-srp-verifier-based-on-user-name/9430#9430
- https://tools.ietf.org/html/rfc2945
Do you have a requirement to use just p?
islishude
implementation
https://github.com/LinusU/secure-remote-password/blob/c12dfdf6a2b9442d03f87592206c7c7bb320a503/client.js#L24-L25
and the spec design