Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

2FA, OTP, WTF?

218 views

Published on

An overview of 2 Factor Authentication and the TOTP algorithm used for one time passwords. Code examples in Python using https://github.com/pyotp/

Published in: Engineering
  • Be the first to comment

  • Be the first to like this

2FA, OTP, WTF?

  1. 1. 2 FA , O T P, W T F ? @ K E L L E Y R O B I N S O N T W I L I O
  2. 2. ( 2 FA ) T W O FA C T O R A U T H E N T I C AT I O N
  3. 3. FACTORS • Something you know • Something you have • Something you are
  4. 4. ( O T P ) O N E T I M E PA S S W O R D
  5. 5. ( T O T P ) T I M E - B A S E D O N E T I M E PA S S W O R D
  6. 6. ( T O T P ) T I M E - B A S E D O N E T I M E PA S S W O R D
  7. 7. T O T P A L G O R I T H M
  8. 8. 1 . S E C R E T K E Y
  9. 9. 2 . C U R R E N T T I M E
  10. 10. 3 . S I G N I N G F U N C T I O N
  11. 11. 4 . T R U N C AT E
  12. 12. https://github.com/pyotp/
  13. 13. T H A N K Y O U ! @ K E L L E Y R O B I N S O N
  14. 14. https://tools.ietf.org/html/rfc6238 https://twofactorauth.org/ https://authy.com/ https://twitter.com/jessysaurusrex https://security.stackexchange.com/a/135953 2 FA R E S O U R C E S

×