Skip to content
/ mirage-ocra-demo Public

A demo of RFC 6287 / OCRA using MirageOS on QubesOS

7 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

cfcs/mirage-ocra-demo

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
.gitignore
.gitignore
 
 
.merlin
.merlin
 
 
.travis.yml
.travis.yml
 
 
README.md
README.md
 
 
config.ml
config.ml
 
 
unikernel.ml
unikernel.ml
 
 
yomake
yomake
 
 

Repository files navigation

Mirage OCRA Build status

  • This is a sample QubesOS unikernel using https://github.com/sg2342/ocaml-rfc6287 to perform authentication using the OCRA-1:HOTP-SHA1-6:C-QN08-PSHA1 suite as implemented in OTP.to cards

  • Since the low-level primitives are provided by nocrypto which is eternally stuck in a frustratingly fucked and/or unmaintained state, pin this revision which is the last occasion on which anybody cared about mirage-xen support: opam pin add -n nocrypto -k git 'https://github.com/mirleft/ocaml-nocrypto.git#79d5db2488e338d161d7e170cd681a8120ce07d1'

  • This demo is probably a bit tricky to install since it uses the unpackaged mirage-framebuffer library. See the eye-of-mirage README for installation instructions for that, and complain in the GitHub issues here if that gives you problems.

Running it

  • You probably want to run something like (after following the instructions above):
opam install cstruct mirage mirage-qubes mirage-key mirage-time-lwt rfc6287 mirage-framebuffer nocrypto
./yomake $(cat my.card.secret)
  • You need to press enter since the state machine is line-based. There is no local echo.

Demo

mirage-ocra-test

About

A demo of RFC 6287 / OCRA using MirageOS on QubesOS

Topics

ocaml mirageos totp hotp ocra qubesos rfc6287

Resources

Readme
Activity

Stars

7 stars

Watchers

4 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages