Hello, I went through the specifications of MFA in the jasig site. Me and one of my friend are interested in contributing to it.
As an initial iteration we have come up with a two-factor authentication using Mobile-OTP as the 2nd factor of authentication. The OTP logic which is derived from Matthias Straub's MobileOTP ( http://motp.sourceforge.net ) is implemented in the JDBC handler for CAS. All we just did is, modify the SearchModeSearchDatabaseAuthenticationHandler.java to authenticate the sequence generated by the mobile app. This is confined to only mobleOtp for JDBC users as opposed to the generic requirements put in the jasig specifications. So i just wanted a feedback from you guys and guide me in the right direction. Here are some of the links where you can find the modified source code and other project details. http://two-factorcas.svn.sourceforge.net/viewvc/two-factorcas/ http://kenfuse.com/project/issues/multi-cas Note: The code contains only the JDBC support files and not the whole cas server code Kirthi Prakash R. -- You are currently subscribed to cas-dev@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
