IETF Logo Mail Archive

[KEYPROV] TOTP Algorithm Definition

Hannes Tschofenig <Hannes.Tschofenig@gmx.net> Mon, 25 August 2008 14:03 UTC

Return-Path: <keyprov-bounces@ietf.org>
X-Original-To: keyprov-archive@optimus.ietf.org
Delivered-To: ietfarch-keyprov-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id F347F3A7091; Mon, 25 Aug 2008 07:03:26 -0700 (PDT)
X-Original-To: keyprov@core3.amsl.com
Delivered-To: keyprov@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 127F13A7091 for <keyprov@core3.amsl.com>; Mon, 25 Aug 2008 07:03:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.193
X-Spam-Level:
X-Spam-Status: No, score=-2.193 tagged_above=-999 required=5 tests=[AWL=0.406, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jB9vVusHVBfz for <keyprov@core3.amsl.com>; Mon, 25 Aug 2008 07:03:25 -0700 (PDT)
Received: from mail.gmx.net (mail.gmx.net [213.165.64.20]) by core3.amsl.com (Postfix) with SMTP id C902E3A68C6 for <keyprov@ietf.org>; Mon, 25 Aug 2008 07:03:24 -0700 (PDT)
Received: (qmail invoked by alias); 25 Aug 2008 13:55:24 -0000
Received: from a91-154-105-144.elisa-laajakaista.fi (EHLO [192.168.255.3]) [91.154.105.144] by mail.gmx.net (mp067) with SMTP; 25 Aug 2008 15:55:24 +0200
X-Authenticated: #29516787
X-Provags-ID: V01U2FsdGVkX19vHtAHG1VvBsiboNO70tsdKrRwYIdef61eLtQ/rO j2M5YRSATiCcWS
Message-ID: <48B2B9CA.2090506@gmx.net>
Date: Mon, 25 Aug 2008 16:55:22 +0300
From: Hannes Tschofenig <Hannes.Tschofenig@gmx.net>
User-Agent: Thunderbird 2.0.0.16 (Windows/20080708)
MIME-Version: 1.0
To: keyprov@ietf.org
X-Y-GMX-Trusted: 0
X-FuHaFi: 0.51
Subject: [KEYPROV] TOTP Algorithm Definition
X-BeenThere: keyprov@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "Provisioning of Symmetric Keys \(keyprov\)" <keyprov.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/keyprov>, <mailto:keyprov-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/keyprov>
List-Post: <mailto:keyprov@ietf.org>
List-Help: <mailto:keyprov-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/keyprov>, <mailto:keyprov-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: keyprov-bounces@ietf.org
Errors-To: keyprov-bounces@ietf.org

Ming crafted a proposal for the OATH Time based OTP algorithm:

-------------------------------------------------------------------

8.4.4.3.  TOTP (OATH Time based OTP)

   Common Name:  TOTP

   Class:  OTP

   URI:  http://www.ietf.org/keyprov/pskc#totp

   Algorithm Definition:  http://www.ietf.org/internet-drafts/
      draft-mraihi-totp-timebased-00.txt

   Identifier Definition  (this RFC)

   Registrant Contact:  IESG

   Profile of XML attributes and subelements of the Key entity:

      For a Key of this algorithm, the <Usage> subelements MUST be
      present.  The "OTP" attribute of the <Usage> MUST be set "true"
      and it MUST be the only attribute set.  The element
      <ResponseFormat> of the <Usage> MUST be used to indicate the OTP
      length and the value format.

      For the Data elements of a key of this algorithm, the following
      subelements MUST be present in either the Key element itself or an
      commonly shared KeyProperties element.

      *  Secret

      *  Time

      *  TimeInterval

      *  TimeDrift

      An example of the Key of this algorithm is as follows.

   <?xml version="1.0" encoding="UTF-8"?>
   <KeyContainer Version="1.0"
   xmlns="urn:ietf:params:xml:ns:keyprov:pskc:1.0">
       <Device>
           <DeviceInfo>
               <Manufacturer>TokenVendorAcme</Manufacturer>
               <SerialNo>987654323</SerialNo>
           </DeviceInfo>
           <Key KeyAlgorithm="http://www.ietf.org/keyprov/pskc#totp"
           KeyId="987654323">
               <Issuer>Issuer</Issuer>
               <Usage OTP="true">
                   <ResponseFormat Length="6" Format="DECIMAL"/>
               </Usage>
               <Data>
                   <Secret>
                       <PlainValue>
                       MTIzNDU2Nzg5MDEyMzQ1Njc4OTA=
                       </PlainValue>
                   </Secret>
                   <Time>
                       <PlainValue>0</PlainValue>
                   </Time>
                   <TimeInterval>
                       <PlainValue>30</PlainValue>
                   </TimeInterval>
                   <TimeDrift>
                       <PlainValue>4</PlainValue>
                   </TimeDrift>
               </Data>
           </Key>
       </Device>
   </KeyContainer>

-------------------------------------------------------------------

Ciao
Hannes

_______________________________________________
KEYPROV mailing list
KEYPROV@ietf.org
https://www.ietf.org/mailman/listinfo/keyprov

v2.23.0 | Report a Bug | By Email