Skip to content
This repository

v0.1 M-Pin™ Strong Authentication Server: M-Pin™ Strong Authentication System enables true two-factor authentication for web sites and applications, based on the open source M-Pin™ Authentication Server and M-Pin™ Managed Service.

branch: master
Octocat-spinner-32 authserver Initial commit June 20, 2013
Octocat-spinner-32 demo Delete skypin.png July 15, 2013
Octocat-spinner-32 docs updated API.html July 23, 2013
Octocat-spinner-32 libs Initial commit June 20, 2013
Octocat-spinner-32 README.md Update README.md March 06, 2014
README.md

M-Pin-Server

M-Pin™ Strong Authentication System enables true two-factor authentication for web sites and applications, based on the open source M-Pin™ Authentication Server and M-Pin™ Managed Service.

The M-Pin™ Managed Service is a highly available, fault tolerant software as a service that issues cryptographic secrets to M-Pin™ Authentication Servers and Clients. The M-Pin™ Authentication Server uses just one leak-proof cryptographic key, and can't reveal any information about your users such as identity or login details, even if the key is compromised. The M-Pin Client is an HTML5 browser, so developers can easily integrate M-Pin into their websites and applications, enabling frictionless two-factor authentication and removing all username / password vulnerabilities.

The CertiVox M-Pin Client and Server Libraries are free software: you can redistribute it and/or modify it under the terms of the BSD 3-Clause License http://opensource.org/licenses/BSD-3-Clause as stated below.

M-Pin Strong Authentication enables multi-factor authentication for web sites and applications; check our wiki for more info and a full glossary, and our demo for a taste of the user experience with M-Pin PIN Pad.

Quick start guide

  1. Install M-Pin Authentication Server, downloading the installation package from here.
    For reference, we provide the source code for the server and the demo web site included in the installation package, but we strongly recommend you set up the server using the installation package available here.
  2. Integrate the M-Pin PIN Pad to serve the PIN pad from your web site and perform all the needed cryptography functions on the end user’s side. Here you find a description of the called functions, as well as instructions on how to integrate the M-Pin PIN Pad and how to customize it.
  3. Integrate the Relying Party libraries for Perl, PHP, Java, to enable M-Pin Strong Authentication in your web site. A working example is provided for each language; check our wiki for further information.

Demo and examples

Our demo provides a taste of the user experience with M-Pin PIN Pad. We also provide a working example for each Relying Party code library.

Code reference

Each Relying Party code library contains a code reference guide, and the Service API code reference for a description of the interaction with M-Pin Managed Services. Check our wiki for more info and a full glossary.

Protocol flow

End-user sign up and log in diagrams are available in Relying Party code library.

Release notes

You can find the full release notes on our wiki.

Bug Tracker

CertiVox uses JIRA for bug and feature tracking which is integrated with our development system.   If you find a bug, you should report bugs into the CertiVox bug tracker .  You can check that the bug hasn't already been reported by searching for it. If you find the bug already reported, you can add a comment of your own about it, or change its status to "Confirmed". If the bug hasn't been reported, you can file a new bug report.

Community

CertiVox is most of all a community of like-minded information security professionals who believe that cryptography is a necessary tool to advance individual freedom and safeguard privacy. CertiVox acts on that belief by providing tools that can be used to secure information, guard privacy and advance individual freedom.
Anyone who uses CertiVox code or services is part of this global community, and we invite you to help shape CertiVox to better meet your needs. To make it yours!
Keep track of development and community news.

Contributing

CertiVox provides an Open Source suite of solutions for data security.  The CertiVox team firmly believes that our solutions and the organizations and users who benefit by them all derive value from active contributions from the community.
You can contribute to help shape and improve our CertiVox products.  If you have ideas and suggestions on new features and improvements that you would like to see and help bring to CertiVox, please fork the public available code on GitHub, or find out more about contributing here.

Authors

CertiVox

Copyright and License

© 2014 CertiVox UK Ltd., All Rights Reserved.

The CertiVox M-Pin Client and Server Libraries are free software: you can redistribute it and/or modify it under the terms of the BSD 3-Clause License http://opensource.org/licenses/BSD-3-Clause.

For full details regarding our CertiVox terms of service please refer to the following links:

Something went wrong with that request. Please try again.