static void StartClient() { var username = "******"; var password = "******"; var hash = new HMACSHA256(); var parameter = new Bit2048(); var srp = new SecureRemoteProtocol(hash, parameter); var privateKey = SecureRemoteProtocol.GetRandomNumber().ToBytes(); var serverKey = SecureRemoteProtocol.GetRandomNumber().ToBytes(); var verificationKey1 = srp.CreateVerificationKey(username, password); var user1 = new SRPUser(username, password, hash, parameter); var a = user1.GetEphemeralSecret(); var authentication1 = user1.StartAuthentication(); var svr1 = new SRPVerifier(hash, parameter, verificationKey1, authentication1.PublicKey); var b = svr1.GetEphemeralSecret(); var challenge1 = svr1.GetChallenge(); var session1 = user1.ProcessChallenge(challenge1); var hamk = svr1.VerifiySession(session1); }
public void ShouldAuthenticateOnTheServer() { var username = "******"; var password = "******"; var hash = new HMACSHA256(); var parameter = new Bit2048(); var srp = new SecureRemoteProtocol(hash, parameter); var privateKey = SecureRemoteProtocol.GetRandomNumber().ToBytes(); var serverKey = SecureRemoteProtocol.GetRandomNumber().ToBytes(); var verificationKey1 = srp.CreateVerificationKey(username, password); var user1 = new SRPUser(username, password, hash, parameter); var a = user1.GetEphemeralSecret(); var authentication1 = user1.StartAuthentication(); var user2 = new SRPUser(username, password, hash, parameter); var user2Ephemeral = user2.GetEphemeralSecret(); var authentication2 = user2.StartAuthentication(); Assert.IsTrue(authentication1.PublicKey.CheckEquals(authentication2.PublicKey)); var svr1 = new SRPVerifier(hash, parameter, verificationKey1, authentication1.PublicKey); var b = svr1.GetEphemeralSecret(); var challenge1 = svr1.GetChallenge(); var session1 = user1.ProcessChallenge(challenge1); var session2 = user2.ProcessChallenge(challenge1); Assert.IsTrue(session1.Key.CheckEquals(session2.Key)); }