SCRAMSHA1 - Infinite Lexicon - Infinite Lexicon

SCRAMSHA1

SCRAM-SHA-1 refers to the SCRAM (Salted Challenge Response Authentication Mechanism) variant that uses SHA-1 as its underlying hash function. It is defined as SCRAM-SHA-1 in the SASL framework and is part of the family of mechanisms designed to provide password-based authentication without sending plain passwords over the network.

How it works in brief: the authentication occurs through a challenge-response exchange between client and server.

Password handling and storage: the client derives a salted password from the user’s password using a key

Security considerations: SCRAM-SHA-1 provides mutual authentication and protects against eavesdropping of passwords. However, SHA-1 is considered

Standards and usage: SCRAM-SHA-1 is standardized in RFC 5802 as a SASL mechanism. It has been implemented

a

a

a

a

a

a

a

man-in-the-middle

a

a

a

man-in-the-middle

authentication,