I am currently working on securing a web-based OTP type authentication. Afrer documenting on Password Authenticated Key Exchange (PAKE) I think that this is a viable option for my needs (SPEKE especially). I would like, first, to know if this protocol can be implemented using server scripting (PHP) and if possible point me in the direction of any practical examples/implementation.

I have been able to find quite a lot of theoretical articles and but thinks are not yet very clear on how this protocol is effectively implemented in a client/server environment.

thanks.