OTP Programming
1.9K views | +0 today
Follow
OTP Programming
OTP Programming
Curated by otptutorial
Your new post is loading...
Your new post is loading...
Scooped by otptutorial
Scoop.it!

Mobile-OTP: Strong Two-Factor Authentication with Mobile Phones

Mobile-OTP: Strong Two-Factor Authentication with Mobile Phones | OTP Programming | Scoop.it
strong two-factor authentication with java midlets on mobile phones...
more...
No comment yet.
Scooped by otptutorial
Scoop.it!

oathtoken - HOTP/OATH one-time password token for iPhone - Google Project Hosting

oathtoken - HOTP/OATH one-time password token for iPhone - Google Project Hosting | OTP Programming | Scoop.it
more...
No comment yet.
Scooped by otptutorial
Scoop.it!

java me - OTP S/KEY - How are Seeds generated, are they random each time? - Stack Overflow

more...
No comment yet.
Scooped by otptutorial
Scoop.it!

yubikey-net - Library for securely decrypting and parsing Yubikey one-time passwords (OTP), written in C#. - Google Project Hosting

yubikey-net - Library for securely decrypting and parsing Yubikey one-time passwords (OTP), written in C#. - Google Project Hosting | OTP Programming | Scoop.it
more...
No comment yet.
Scooped by otptutorial
Scoop.it!

c# - How do I generate One time passwords (OTP / HOTP)? - Stack Overflow

more...
No comment yet.
Scooped by otptutorial
Scoop.it!

FOASv3_Technical_Whitepaper.pdf

The user can be authenticated by the OTP Server authentication system using necessary information, such as the
PIN and dynamic password. For different security strengths, the combination of the account and the dynamic
password, or the account, the PIN, and the dynamic password can be used for authentication.   

more...
No comment yet.
Scooped by otptutorial
Scoop.it!

apache - What one-time-password devices are compatible with mod_authn_otp? - Stack Overflow

mod_authn_otp is an Apache web server module for two-factor authentication using one-time passwords (OTP) generated via the HOTP/OATH algorithm defined in RFC 4226. The developer's has listed only one compatible device (the Authenex's A-Key 3600) on their website. If a device is fully compliant with the standard, and it allows you to recover the token ID, it should work. However, without testing, it's hard to tell whether a device is fully compliant.

Have you ever tried other devices (software or hardware) with mod_authn_otp (or other open source server-side OTP program)? If yes, please share your experience :)

 

Any device that claims to be "OATH Compliant" should -- and probably does -- work.

The hard part is not compliance, it's getting the vendor to give you the secret key associated with the token. The don't like to do this because they make their money off the servers, not the tokens.

Note this new iPhone app also works if cell phones are an option for you.

 

 

more...
No comment yet.
Scooped by otptutorial
Scoop.it!

.net - How can you generate OTP with system.security.cryptography that can be authenticated on client? - Stack Overflow

more...
No comment yet.
Scooped by otptutorial
Scoop.it!

Lamport's one-time password algorithm (or, don't talk to complete strangers!)

Lamport's one-time password algorithm (or, don't talk to complete strangers!) | OTP Programming | Scoop.it
The Lamport algorithm provides an elegant scheme for generating and applying one-time passwords, or OTP. Find out how Lamport works, then see it in action with an OTP reference implementation for an extensible, Java-based library.
more...
No comment yet.