Projects

wikid-two-factor-authentication

Two-factor authentication from WiKIDThe WiKID Strong Authentication System is a public key-based two-factor authentication system. It is flexible, extensible, and secure alternative to tokens,certs & passwords. Application support for Java, Windows, PHP, Ruby, Python, SugarCRM, webmail, OpenVPN ... [More] , LDAP, TACACS+, etc. Open source token clients include a J2SE client and a Firefox extension (in beta). The token client encrypts the user's PIN with the WiKID server's public key and sends it to the server along with a one-time use AES key. If the PIN is correct, the account active and the encryption valid, the one-time password is generated (via java random), encrypted by the token client's public key and the AES key and returned. If the security domain is configured for https mutual authentication, a hash of the valid ssl cert and the URL are also sent with the OTP. The token client will attempt to fetch the SSL cert from the URL and hash it. If the hashes match, the URL is presented as valid and the default browser is launched to the valid website. This prevents MITM attacks against web applications. DocumentationWe have recently published a number of how-tos: Add two-factor authentication to Ruby Add two-factor authentication to PHP How to use Radius for two-factor authentication with Apache How to prevent phishing with mutual authentication Secure SSH with two-factor authentication How to configure OpenVPN for WiKID [Less]

yubico-dot-net-client

This is the .NET client code from Yubico to demonstrate how to invoke Yubico's web service to validate an OTP generated by your Yubikey. -- Yubico.com - Elegant, easy and safe authentication for the web 5-sec demo: http://www.yubico.com/demo_frontpage_movie.html

yforum

With minimal changes to PHPBB open source code. Your forum members can start using Yubikeys as a strong authentication device to post articles to the forum. This avoids spams by excessive anonymous registration by few malicious users. The forum content quality will be better with minimal ... [More] moderation overhead. Also, when you run polling, surveys, or voting amongst your forum members, the results will be much more credible. Yubikey not only avoids account takeover effectively but it also adds convenience, loyalty for members in a forum. An example is http://forum.yubico.com/ [Less]