summaryrefslogtreecommitdiff
path: root/javascript/aes.js
AgeCommit message (Collapse)Author
2009-08-12When upgrading the user from a non-srp account to an SRP account, the client ↵ausiv4
must send the server the password. I wasn't happy about doing this in plaintext, so I've incorporated slowAES on both the client and the server to encrypt the password before it is sent, using the key generated in the first SRP transaction.