Skip to content

gregorlarson/safeotp

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

56 Commits

.settings

.settings

 
 

res

res

 
 

src

src

 
 

.classpath

.classpath

 
 

.gitignore

.gitignore

 
 

.project

.project

 
 

AndroidManifest.xml

AndroidManifest.xml

 
 

COPYING

COPYING

 
 

COPYING.icons

COPYING.icons

 
 

README.md

README.md

 
 

ic_launcher-web.png

ic_launcher-web.png

 
 

proguard-project.txt

proguard-project.txt

 
 

project.properties

project.properties

 
 

Repository files navigation

SafeOTP

A basic Android authenticator app that encrypts the private keys with a pin or passphrase.

  • Current Status Pre-initial version. At this point, SafeOTP is a simple clone of FreeOTP. Stay tuned.....

Design

In order to add or view the OTP a password will be required.

  • Each private key will be encrypetd by a provided passphrase.

Security Considerations

Using a short passphrase is very prone to a brute-force attack, however, it is difficult to enter a long passphrase on a touch-screen. To mitigate this problem I am taking a slightly unconventional approach....

  • When an invalid passphrase is provided it will be accepted by the app, but the resulting OTP will not be valid.
    • To avoid typos I will take the enterred pin/passphrase and generate some kind of graphic that will help the user recognize when they have enterred the correct value.

Branches

Branch: upstream

The upstream branch will track the FreeOTP project at fedorahosted.org:

Branch: hacking

Work in progress. Note that I may rebase this branch or rewrite history.

Branch: master

I will try and keep this branch reasonably stable.

About

Android Authenticator with encrypted key. Forked from org.fedorahosted.freeotp

Resources

Readme

License

View license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages