https://sarwiki.informatik.hu-berlin.de/index.php?action=history&feed=atom&title=Yubikey
Yubikey - Revision history
2026-05-11T11:55:25Z
Revision history for this page on the wiki
MediaWiki 1.43.8
https://sarwiki.informatik.hu-berlin.de/index.php?title=Yubikey&diff=9902&oldid=prev
Mg at 15:12, 27 April 2012
2012-04-27T15:12:59Z
<p></p>
<table style="background-color: #fff; color: #202122;" data-mw="interface">
<col class="diff-marker" />
<col class="diff-content" />
<col class="diff-marker" />
<col class="diff-content" />
<tr class="diff-title" lang="en">
<td colspan="2" style="background-color: #fff; color: #202122; text-align: center;">← Older revision</td>
<td colspan="2" style="background-color: #fff; color: #202122; text-align: center;">Revision as of 15:12, 27 April 2012</td>
</tr><tr>
<td colspan="2" class="diff-lineno">Line 1:</td>
<td colspan="2" class="diff-lineno">Line 1:</td>
</tr>
<tr>
<td class="diff-marker" data-marker="−"></td>
<td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><br /></td>
<td colspan="2" class="diff-empty diff-side-added"></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>== Yubikey ==</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>== Yubikey ==</div></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* USB-Token</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* USB-Token</div></td>
</tr>
<tr>
<td colspan="2" class="diff-lineno">Line 28:</td>
<td colspan="2" class="diff-lineno">Line 27:</td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>== Yubikey ==</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>== Yubikey ==</div></td>
</tr>
<tr>
<td colspan="2" class="diff-empty diff-side-deleted"></td>
<td class="diff-marker"><a class="mw-diff-movedpara-right" title="Paragraph was moved. Click to jump to old location." href="#movedpara_5_0_lhs">⚫</a></td>
<td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><a name="movedpara_2_0_rhs"></a>[[Image:Yubi_auth.png]]</div></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>=== OTP ===</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>=== OTP ===</div></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* ''secret'': 128-bit AES key</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* ''secret'': 128-bit AES key</div></td>
</tr>
<tr>
<td colspan="2" class="diff-lineno">Line 57:</td>
<td colspan="2" class="diff-lineno">Line 57:</td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* Validierung der OTPs übernimmt ein Validation Server der via HTTP ansprechbar ist</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* Validierung der OTPs übernimmt ein Validation Server der via HTTP ansprechbar ist</div></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* http://code.google.com/p/yubikey-val-server-php/wiki/ValidationProtocolV20</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* http://code.google.com/p/yubikey-val-server-php/wiki/ValidationProtocolV20</div></td>
</tr>
<tr>
<td colspan="2" class="diff-empty diff-side-deleted"></td>
<td class="diff-marker" data-marker="+"></td>
<td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><br /></td>
</tr>
<tr>
<td class="diff-marker"><a class="mw-diff-movedpara-left" title="Paragraph was moved. Click to jump to new location." href="#movedpara_2_0_rhs">⚫</a></td>
<td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div><a name="movedpara_5_0_lhs"></a>[[Image:Yubi_auth.png]]</div></td>
<td colspan="2" class="diff-empty diff-side-added"></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>=== Validation ===</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>=== Validation ===</div></td>
</tr>
</table>
Mg
https://sarwiki.informatik.hu-berlin.de/index.php?title=Yubikey&diff=9901&oldid=prev
Mg: /* Validation Protocol */
2012-04-27T15:12:18Z
<p><span class="autocomment">Validation Protocol</span></p>
<table style="background-color: #fff; color: #202122;" data-mw="interface">
<col class="diff-marker" />
<col class="diff-content" />
<col class="diff-marker" />
<col class="diff-content" />
<tr class="diff-title" lang="en">
<td colspan="2" style="background-color: #fff; color: #202122; text-align: center;">← Older revision</td>
<td colspan="2" style="background-color: #fff; color: #202122; text-align: center;">Revision as of 15:12, 27 April 2012</td>
</tr><tr>
<td colspan="2" class="diff-lineno">Line 57:</td>
<td colspan="2" class="diff-lineno">Line 57:</td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* Validierung der OTPs übernimmt ein Validation Server der via HTTP ansprechbar ist</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* Validierung der OTPs übernimmt ein Validation Server der via HTTP ansprechbar ist</div></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* http://code.google.com/p/yubikey-val-server-php/wiki/ValidationProtocolV20</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* http://code.google.com/p/yubikey-val-server-php/wiki/ValidationProtocolV20</div></td>
</tr>
<tr>
<td class="diff-marker" data-marker="−"></td>
<td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div>[[<del style="font-weight: bold; text-decoration: none;">File</del>:Yubi_auth.png]]</div></td>
<td class="diff-marker" data-marker="+"></td>
<td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>[[<ins style="font-weight: bold; text-decoration: none;">Image</ins>:Yubi_auth.png]]</div></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>=== Validation ===</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>=== Validation ===</div></td>
</tr>
</table>
Mg
https://sarwiki.informatik.hu-berlin.de/index.php?title=Yubikey&diff=9900&oldid=prev
Mg at 15:09, 27 April 2012
2012-04-27T15:09:44Z
<p></p>
<table style="background-color: #fff; color: #202122;" data-mw="interface">
<col class="diff-marker" />
<col class="diff-content" />
<col class="diff-marker" />
<col class="diff-content" />
<tr class="diff-title" lang="en">
<td colspan="2" style="background-color: #fff; color: #202122; text-align: center;">← Older revision</td>
<td colspan="2" style="background-color: #fff; color: #202122; text-align: center;">Revision as of 15:09, 27 April 2012</td>
</tr><tr>
<td colspan="2" class="diff-lineno">Line 57:</td>
<td colspan="2" class="diff-lineno">Line 57:</td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* Validierung der OTPs übernimmt ein Validation Server der via HTTP ansprechbar ist</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* Validierung der OTPs übernimmt ein Validation Server der via HTTP ansprechbar ist</div></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* http://code.google.com/p/yubikey-val-server-php/wiki/ValidationProtocolV20</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* http://code.google.com/p/yubikey-val-server-php/wiki/ValidationProtocolV20</div></td>
</tr>
<tr>
<td colspan="2" class="diff-empty diff-side-deleted"></td>
<td class="diff-marker" data-marker="+"></td>
<td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>[[File:Yubi_auth.png]]</div></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>=== Validation ===</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>=== Validation ===</div></td>
</tr>
</table>
Mg
https://sarwiki.informatik.hu-berlin.de/index.php?title=Yubikey&diff=9898&oldid=prev
Mg at 15:03, 27 April 2012
2012-04-27T15:03:08Z
<p></p>
<table style="background-color: #fff; color: #202122;" data-mw="interface">
<col class="diff-marker" />
<col class="diff-content" />
<col class="diff-marker" />
<col class="diff-content" />
<tr class="diff-title" lang="en">
<td colspan="2" style="background-color: #fff; color: #202122; text-align: center;">← Older revision</td>
<td colspan="2" style="background-color: #fff; color: #202122; text-align: center;">Revision as of 15:03, 27 April 2012</td>
</tr><tr>
<td colspan="2" class="diff-lineno">Line 1:</td>
<td colspan="2" class="diff-lineno">Line 1:</td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>== Yubikey ==</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>== Yubikey ==</div></td>
</tr>
<tr>
<td colspan="2" class="diff-empty diff-side-deleted"></td>
<td class="diff-marker" data-marker="+"></td>
<td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>* USB-Token</div></td>
</tr>
<tr>
<td colspan="2" class="diff-empty diff-side-deleted"></td>
<td class="diff-marker" data-marker="+"></td>
<td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>* One-Time Password Generator</div></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>== Zwei-Faktor-Authentifizierung ==</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>== Zwei-Faktor-Authentifizierung ==</div></td>
</tr>
<tr>
<td colspan="2" class="diff-lineno">Line 11:</td>
<td colspan="2" class="diff-lineno">Line 13:</td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>*** smsTAN (Passwort + SIM-Karte)</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>*** smsTAN (Passwort + SIM-Karte)</div></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
</tr>
<tr>
<td class="diff-marker" data-marker="−"></td>
<td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div>Yubikey: OTP als Nachweis für Besitz.</div></td>
<td class="diff-marker" data-marker="+"></td>
<td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>Yubikey: OTP als Nachweis für<ins style="font-weight: bold; text-decoration: none;"> den</ins> Besitz<ins style="font-weight: bold; text-decoration: none;"> eines bestimmten Tokens</ins>.</div></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>== One-Time Passwords ==</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>== One-Time Passwords ==</div></td>
</tr>
<tr>
<td colspan="2" class="diff-lineno">Line 25:</td>
<td colspan="2" class="diff-lineno">Line 27:</td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>*** OCRA OATH Challenge Response Algorithm (RFC 6287)</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>*** OCRA OATH Challenge Response Algorithm (RFC 6287)</div></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><br /></td>
</tr>
<tr>
<td class="diff-marker" data-marker="−"></td>
<td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div>== Yubikey<del style="font-weight: bold; text-decoration: none;"> OTP</del> ==</div></td>
<td class="diff-marker" data-marker="+"></td>
<td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>== Yubikey ==</div></td>
</tr>
<tr>
<td colspan="2" class="diff-empty diff-side-deleted"></td>
<td class="diff-marker" data-marker="+"></td>
<td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>=== OTP ===</div></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* ''secret'': 128-bit AES key</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* ''secret'': 128-bit AES key</div></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* ''moving factor'': (3) Counter</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* ''moving factor'': (3) Counter</div></td>
</tr>
<tr>
<td colspan="2" class="diff-lineno">Line 126:</td>
<td colspan="2" class="diff-lineno">Line 129:</td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* CryptoFunction = HOTP-H-n</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* CryptoFunction = HOTP-H-n</div></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>** <math>H \in \{</math> SHA-1, SHA256, SHA512 <math>\}</math></div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>** <math>H \in \{</math> SHA-1, SHA256, SHA512 <math>\}</math></div></td>
</tr>
<tr>
<td class="diff-marker" data-marker="−"></td>
<td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div>** n - Anzahl der Ziffern 4-10 oder 0</div></td>
<td class="diff-marker" data-marker="+"></td>
<td style="color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>** n - Anzahl der Ziffern 4-10 oder 0<ins style="font-weight: bold; text-decoration: none;"> (= keiner Verkürzung)</ins></div></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* DataInput = OCRASuite | 00 | C | Q | P | S | T</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>* DataInput = OCRASuite | 00 | C | Q | P | S | T</div></td>
</tr>
<tr>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>** OCRASuite - mode of operation</div></td>
<td class="diff-marker"></td>
<td style="background-color: #f8f9fa; color: #202122; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #eaecf0; vertical-align: top; white-space: pre-wrap;"><div>** OCRASuite - mode of operation</div></td>
</tr>
</table>
Mg
https://sarwiki.informatik.hu-berlin.de/index.php?title=Yubikey&diff=9897&oldid=prev
Mg at 15:00, 27 April 2012
2012-04-27T15:00:32Z
<p></p>
<p><b>New page</b></p><div><br />
== Yubikey ==<br />
<br />
== Zwei-Faktor-Authentifizierung ==<br />
* Besitz und Wissen<br />
* z.B.<br />
** nPA eID(PIN + Ausweis)<br />
** Online-Banking<br />
*** iTAN (Passwort + TAN-Liste)<br />
*** ChipTAN (Passwort + EC-Karte)<br />
*** smsTAN (Passwort + SIM-Karte)<br />
<br />
Yubikey: OTP als Nachweis für Besitz.<br />
<br />
== One-Time Passwords ==<br />
* generell<br />
** ''moving factor'' MF: z.B. counter, timestamp<br />
** ''secret'' S<br />
** otp = ''f''(S, MF)<br />
* konkret<br />
** Yubikey OTP<br />
** OATH - Initiative for open authentication<br />
*** HOTP HMAC-Based One-time Password Algorithm (RFC 4226)<br />
*** TOTP Time-based One-time Password Algorithm (RFC 6238)<br />
*** OCRA OATH Challenge Response Algorithm (RFC 6287)<br />
<br />
== Yubikey OTP ==<br />
* ''secret'': 128-bit AES key<br />
* ''moving factor'': (3) Counter<br />
** session counter (16 bit)<br />
** session use counter (8 bit)<br />
** timestamp (24 bit)<br />
* ''public id'' (48 bit)<br />
* ''private id'' (48 bit)<br />
<br />
<nowiki><br />
internal id s.count timestamp s.use random crc<br />
ccff5e92d4e8 0003 275ab5 01 ead3 e90e<br />
\ \ | / / /<br />
ccff5e92d4e80300b55a2701d3ea0ee9 <br />
|<br />
aes_encrypt(S)<br />
public id |<br />
ffda638233c7 1cd02dd852d50fbb5acb4c6808062625<br />
\ |<br />
ffda638233c71cd02dd852d50fbb5acb4c6808062625<br />
|<br />
modhex_encode()<br />
|<br />
vvtlhejdeeribrtcdttjgdtgcvnnglrnfrhjcjchdhdg<br />
</nowiki><br />
<br />
=== Validation Protocol ===<br />
* Validierung der OTPs übernimmt ein Validation Server der via HTTP ansprechbar ist<br />
* http://code.google.com/p/yubikey-val-server-php/wiki/ValidationProtocolV20<br />
<br />
=== Validation ===<br />
* Entschlüsselung des OTP mit ''shared secret''<br />
* CRC-Check<br />
* Internal-ID<br />
* Counter<br />
** <math>s.count > s.count'</math><br />
** <math>s.count == s.count'</math><br />
*** <math>s.use > s.use'</math><br />
*** Zeitdifferenz der timestamps ("phishing check")<br />
<br />
<nowiki><br />
vvtlhejdeeribrtcdttjgdtgcvnnglrnfrhjcjchdhdg<br />
|<br />
modhex_decode()<br />
|<br />
ffda638233c71cd02dd852d50fbb5acb4c6808062625<br />
/ \ <br />
ffda638233c7 1cd02dd852d50fbb5acb4c6808062625<br />
public id |<br />
aes_decrypt(K)<br />
|<br />
ccff5e92d4e80300b55a2701d3ea0ee9 <br />
|<br />
ccff5e92d4e8 0003 275ab5 01 ead3 e90e<br />
internal id s.count timestamp s.use rand crc <br />
</nowiki><br />
<br />
== HOTP RFC 4226 ==<br />
=== Algorithmus ===<br />
* ''moving factor'': 64-bit counter C<br />
* ''secret'': 128-bit HMAC key K<br />
* <math>HOTP(K, C) = Truncate(HMAC-SHA1(K, C))</math><br />
* >= 6 Ziffern<br />
<br />
=== Truncate() ===<br />
* Verkürzen der MAC auf d Ziffern<br />
* 31-bit Zahl x exrahieren<br />
<nowiki><br />
index = mac[19] & 0xf;<br />
x = mac[index] << 24 <br />
| mac[index+1] << 16 <br />
| mac[index+2] << 8 <br />
| mac[index+3];<br />
x &= 0x7fffffff;<br />
</nowiki><br />
* otp = x mod 10^d<br />
<br />
=== Validation ===<br />
* <math>HOTP(K, C_{last} + 1) == otp</math> ?<br />
* lookahead: akzeptiere <math>C_{last} + 1, \ldots, C_{last} + n</math><br />
* 6 Ziffern <math>\approx</math> 20 bits. mit lookahead = 8 <math>\approx</math> 17 bits<br />
* Serverseitiges throttling um Brute-Force Angriffe zu erschweren<br />
<br />
== TOTP RFC 6238 ==<br />
* HOTP mit zeitbasiertem Counter<br />
* <math>T_0</math>: Startzeit (unix time)<br />
* <math>X</math>: time step<br />
* <math>T = (current_time - T_0) / X</math><br />
* <math>TOTP = HOTP(K, T)</math><br />
<br />
== ORCA RFC 6287 ==<br />
* Generalisierung/Erweiterung von HOTP/TOTP<br />
* (mutual) challenge-response<br />
* SHA1 nicht fest verdrahtet<br />
* nicht wirklich verbreitet<br />
** Problem: wie bekommt man die Challenge in das Token?<br />
<br />
=== ORCA CryptoFunction ===<br />
* OCRA = CryptoFunction(K, DataInput)<br />
* CryptoFunction = HOTP-H-n<br />
** <math>H \in \{</math> SHA-1, SHA256, SHA512 <math>\}</math><br />
** n - Anzahl der Ziffern 4-10 oder 0<br />
* DataInput = OCRASuite | 00 | C | Q | P | S | T<br />
** OCRASuite - mode of operation<br />
** C - Counter (optional)<br />
** Q - Challenge<br />
** P - hashed password/pin (optional)<br />
** S - session information (optional)<br />
** T - timestamp (optional) <br />
<br />
=== ORCA Suites ===<br />
* OCRASuite = 'Algorithm:CryptoFunction:DataInput'<br />
<br />
* "OCRA-1:HOTP-SHA512-8:C-QN08-PSHA1"<br />
** ''OCRA-1'': OCRA Version 1<br />
** ''HOTP-SHA512-8'': HTOP mit SHA512 verkürzt auf 8 Ziffern<br />
** ''C-QN08-PSHA1'': <br />
*** ''C'': mit counter<br />
*** ''QN08'': numerische Challenge bis zu 8 Ziffern<br />
*** ''PSHA1'': SHA1 des Passworts<br />
<br />
* "OCRA-1:HOTP-SHA256-6:QA10-T1M" <br />
** ''OCRA-1'': OCRA Version 1<br />
** ''HOTP-SHA256-6'': HTOP mit SHA256 verkürzt auf 6 Ziffern<br />
** ''QA10-T1M'':<br />
*** ''QA10'': alphanumerische Challenge bis zu 10 Zeichen.<br />
*** ''T1M'': Timestamp Counter (time step = 1 minute) <br />
<br />
=== Challenge Response Protokoll ===<br />
<nowiki><br />
CLIENT SERVER<br />
(PROVER) VERIFIER)<br />
| |<br />
| Verifier sends challenge to prover |<br />
| Challenge = Q |<br />
|<---------------------------------------|<br />
| |<br />
| Prover Computes Response |<br />
| R = OCRA(K, {[C] | Q | [P | S | T]}) |<br />
| Prover sends Response = R |<br />
|--------------------------------------->|<br />
| |<br />
| Verifier Validates Response |<br />
| If Response is valid, Server sends OK |<br />
| If Response is not, Server sends NOK |<br />
|<---------------------------------------|<br />
| |<br />
</nowiki><br />
http://tools.ietf.org/rfc/rfc6287.txt<br />
<br />
=== Mututal Challenge Response Protokoll ===<br />
<nowiki><br />
CLIENT SERVER<br />
(PROVER) (VERIFIER)<br />
| |<br />
| 1. Client sends client-challenge |<br />
| QC = Client-challenge |<br />
|------------------------------------------------->|<br />
| |<br />
| 2. Server computes server-response |<br />
| and sends server-challenge |<br />
| RS = OCRA(K, [C] | QC | QS | [S | T]) |<br />
| QS = Server-challenge |<br />
| Response = RS, QS |<br />
|<-------------------------------------------------|<br />
| |<br />
| 3. Client verifies server-response |<br />
| and computes client-response |<br />
| OCRA(K, [C] | QC | QS | [S | T]) != RS -> STOP |<br />
| RC = OCRA(K, [C] | QS | QC | [P | S | T]) |<br />
| Response = RC |<br />
|------------------------------------------------->|<br />
| |<br />
| 4. Server verifies client-response |<br />
| OCRA(K, [C] | QS | QC | [P|S|T]) != RC -> STOP |<br />
| Response = OK |<br />
|<-------------------------------------------------|<br />
| |<br />
</nowiki><br />
http://tools.ietf.org/rfc/rfc6287.txt<br />
<br />
== Links ==<br />
* http://www.yubikey.com<br />
* http://code.google.com/p/yubikey-val-server-php/wiki/ValidationProtocolV20<br />
* http://www.openauthentication.org/<br />
* http://tools.ietf.org/rfc/rfc4226.txt<br />
* http://tools.ietf.org/rfc/rfc6238.txt<br />
* http://tools.ietf.org/rfc/rfc6287.txt</div>
Mg