one time password specifications otps cryptoapi n.
Download
Skip this Video
Loading SlideShow in 5 Seconds..
One-Time Password Specifications (OTPS): CryptoAPI PowerPoint Presentation
Download Presentation
One-Time Password Specifications (OTPS): CryptoAPI

Loading in 2 Seconds...

play fullscreen
1 / 5

One-Time Password Specifications (OTPS): CryptoAPI - PowerPoint PPT Presentation


  • 93 Views
  • Uploaded on

One-Time Password Specifications (OTPS): CryptoAPI. Gareth Richards, RSA Security OTPS Workshop, February 2006. Overview. Describes Microsoft CryptoAPI objects, procedures and mechanisms that can be used to retrieve OTPs

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about 'One-Time Password Specifications (OTPS): CryptoAPI' - meir


An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
one time password specifications otps cryptoapi

One-Time Password Specifications (OTPS): CryptoAPI

Gareth Richards, RSA Security

OTPS Workshop, February 2006

overview
Overview
  • Describes Microsoft CryptoAPI objects, procedures and mechanisms that can be used to retrieve OTPs
  • Intended to meet the needs of applications wishing to access connected OTP tokens in an interoperable manner
  • Intended to mirror the sister PKCS#11 document
principals of operation
Intent is to follow the HMAC approach for CryptoAPI

CryptAcquireContext gives handle to key container

OTP algorithm given by key in the container

CryptCreateHash gives handle to OTP hash object

CryptSetHashParam sets the OTP parameters

CryptHashData generates OTPs

CryptGetHashParam retrieves the OTP value

Principals of Operation

CryptAcquireContext

CryptCreateHash

CryptSetHashParam

CryptHashData

CryptGetHashParam

recent changes
Recent Changes
  • Draft 5, published November 17
    • Added text clarifying the fact that an application should use returned OTP_PARAMETERS in authentication requests.
    • Added a CRYPT_OTP_FORMAT OTP parameter to allow applications to determine the format of the returned OTP.
next steps
Next Steps
  • Values for new manifest constants are only outstanding issue.
  • Unable to obtain Microsoft approval for OTP extensions to CryptoAPI
  • Two possibilities for discussion:
    • Withdraw document
      • Assigned values will not be safe
    • Assign values with caveat
      • Assigned values will not be sanctioned