Skip to content

isadri/TOTP

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

64 Commits
totp
totp
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
generate.py
generate.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

TOTP

This is an implementation of the Time-based One-Time Password (TOTP) algorithm. The TOTP is an algorithm that generates a one-time password (OTP) using current time as a source of uniqueness.

It is considered as the time-based variant of the HMAC-based One-Time Password (HOTP) algorithm. In other words, TOTP replaces the counter with a value based on the current time:

TOTP is defined as TOTP(K) = HOTP(K, T), where K is the secret key used to generate the OTP value and T is an integer and represents the number of time steps between the initial counter time T0 and the current Unix time. T is defined as follows

T = ⌊(Current Unix Time - T0) / X⌋

where

  • T0 is the Unix time to start counting time steps. T0 = 0 in our implementation.
  • X represents the time step in seconds. 30 is the default value in our implementation and it can be modified.

The base32 encoding/decoding is used for generating the key. This is because base32 is used to deliver the secret key in a human readable form.

The implementation follows the TOTP algorithm requirements as mentioned in RFC 6238

Usage

Create a virtual environment using

python3.{your version} -m venv env

Then, activate the virtual environment

source env/bin/activate

Install the dependencies

pip install -r requirements.txt

Now, you can go and generate some keys.

python3 generate.py [-h] [-g <filename>] [-k {otp.key}]

This program needs a hexadecimal key in order to generate the TOTP key. The program reads the hexadecimal key from the file give with the -g option and stores it in a file called otp.key. When using the program with the -k otp.key argument, the program generates a new temporary password based on the key given in the otp.key file.

For example, suppose key.hex file contains the hexadecimal key 6EAACADEBBDE5CFCDA4FCEBDFCD2F7A3725B7EFFDFFD2DE3BD6C527B6A3F57CF, then the following usage will store the key in the otp.key file.

python3 generate.py -g key.hex

Important

The key.hex file must contains at least 64 base32 characters, those are [A-Z2-7=].

Then, if you want a new temporary key based on the above hexadecimal key, use the following

python3 generate.py -k otp.key

This will pop up a windown containing the qr code of the OTP value. After scanning that qr code (e.g., using Google Authenticator app) enter the 6 digits in the prompt given in the program. The program will verify if the value you typed is valid or not.

The key will be changed after every 30 seconds. So if you wait 30 seconds or more, a new temporary key will be generated.

References

About

An implemention of the Time-based One-Time Password (TOTP) algorithm

Topics

python algorithm authentication python3

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages