SafeID is a proof-of-concept web server library that protects user passwords using the Pythia protocol. Web servers can interact with a Pythia server to encrypt new passwords and verify existing passwords.
SafeID protects passwords using the Pythia PRF protocol. This module and it’s associated command-line tool (safeid) are a proof-of-concept that demonstrates how a web server could protect user passwords as an alternative to simply hashing passwords with random salts.
SafeID uses the Pythia Python package, which requires the Charm Crypto Library for Python: http://www.charm-crypto.com/Download.html If there was a PIP package, we’d automatically install upon installing Pythia, but sadly, there isn’t one.
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.