An Efficient Implementation of U2F & UAF Server
Date Issued
2016
Date
2016
Author(s)
Kuo, Yu-Chen
Abstract
In recent years, services over Internet flourish rapidly. More and more people use online services to do transaction or access personal data. Therefore, authentication of user identity has become an important task. At present, most of the online services ask user enter the username and password to validate identity of user. However, the password-based authentication has several security problems. For this reason, FIDO alliance published two authentication specification: ""Universal 2nd Factor""(U2F) and ""Universal Authentication Framework""(UAF). U2F is a second factor verification. It strengthens the security of password-based authentication by using a real token. UAF uses biometrics or some other way provided by authenticator to verify user identity. Online services use protocols provides by U2F/UAF and asymmetric-key algorithms to authenticate the token or authenticator, so they can make sure the user identity. In this paper, we implement the server side of U2F and UAF in PHP. Because our U2F is an industry-university cooperative research project with Ruten, we do not open the code. We open our UAF code on ""https://github.com/ckwill/uaf-server-library-php"".
Subjects
user identity authentication
password
token-based authentication
FIDO alliance
U2F
UAF
Type
thesis
File(s)![Thumbnail Image]()
Loading...
Name
ntu-105-R03943148-1.pdf
Size
23.32 KB
Format
Adobe PDF
Checksum
(MD5):c3a25be8edef4754f7817a5fb38dbb73