CONTACTLESS OTP MANAGER
NFC device for contactless OTP token management (HOTP & TOTP)
Contactless OTP Manager (NFC Hardware Token Management) OTP (One Time Password) or PIN (One Time Authorisation Code) or OTAC dynamic password, is a password valid only for a single login session, transaction, on an information system or computer system. The OTP is notably used as a two-factor authentication (2FA). It makes it possible to secure the use of static passwords that can be stolen. The user of the static password is asked for a code generated by the OTP to confirm authentication. The user has an OTP device to generate the codes associated with the accounts where their static passwords are used.
OTP is an additional protection to traditional passwords. However, OTPs can be intercepted or redirected, and hard tokens can be lost, damaged or stolen. Many OTP systems must be implemented in a rigorous and highly secure manner to prevent attackers from discovering the password in order to impersonate its user.
An OTP code is a one-time use code. You will be asked for a new one each time you log in with your traditional password. So if the latter is stolen by a cybercriminal, he will have to provide your OTP code. The OTP code is in your pocket, in an EviCypher NFC device that manages OTP tokens. This makes it physically impossible for a cybercriminal to steal your OTP code.
Contactless OTP Manager is an NFC device that offers its user the possibility to access contactless OTP codes and static passwords in seconds via an NFC-enabled Android phone.
OTP WALLET NFC HSM
Based on EviCypher technology, the NFC HSM OTP token wallet device enables encrypted storage, management, sharing, generation and secure use of OTP codes.
Human-to-human
CONTACTLESS OTP MANAGER decentralises the management of OTP tokens from IT and telephone systems. At the same time, the solution offers extreme flexibility in their use and encrypted end-to-end but human-to-human sharing.
End-to-end anonymity
Anonymous solution since information about the identity of the owner and/or user and/or hardware used is requested and/or collected. Encrypted OTP tokens are never stored in the computer and/or the NFC phone. They are only used on demand in the volatile memory.
Share encrypt OTP token
The solution offers the ability to simply share cloud service encryption keys. Sharing is done via a QR Code encrypted in RSA 4096. The sender can use all means of communication including SMS and even air gap via a web cam.
NFC Hardware Wallet OTP Token Manager
New secure end-to-end contactless hardware OTP token manager
Simple contactless use
Simple and efficient thanks to EviCypher technology, to create, manage and use OTP tokens. You can share RSA 4096 encrypted tokens via your EviCypher NFC device
Protection against key theft
To use OTP tokens, you must have at least one EviCypher NFC device. It has a configurable access control system with multi-factor authentication. In addition, each token can be secured with its own trust criteria.
Air gap sharing by encrypted QR
Quickly and easily achieve cloud encryption key sharing by scanning the encrypted QR Code with the public key of your RSA 4096 key.
Easy to use by NFC Phone
The solution is not dependent on phone security, as it does not store any OTP tokens in the phone. In fact, the EviCypher NFC device can be paired with different NFC phones. The OTP code is generated automatically on demand in the volatile memory via its stored token encrypted in the NFC device.
Contactless OTP Manager Application
The OTP token manager function is integrated in the EviCypher application from Freemindtronic.
Contactless OTP Manager supports both types of OTP. The time-based TOTP and the counter-based HOTP.
Below you can see the version history of the cloud service that uses encryption keys.
1.7.0 EviCypher by Freemindtronic application NFC phone Android
Frst version December 25, 2022
Features
- Added support for OTP Token (TOTP)
To learn more about the EviCypher by Freemindtronic application click HERE
New International Innovation 2022
Our solution, protected by two international patents, breaks with all existing solutions. Indeed, our method of securing the secret keys (OTP: One Time assword) is not only innovative but also unmatched. The solution is not based on the use of remote servers, nor the storage of keys on the computer or on the phone.
In fact, the secret key OTP are stored encrypted in an NFC device. These keys are then used from the device to generate an OTP passcode. Thus the secret keys are physically isolated from the computer and telephone systems.
OTP passcodes are always available on demand via the device, which can be stored in the pocket.
In contrast to digital and hardware OTP solutions, OTP secret keys can be added to the trust criteria. Thus, OTP secret keys can only be used if all trust criteria are validated such as a geographical area.
OTP secret keys can also be exchanged between even remote NFC devices in RSA 4096. The pre-established trust criteria cannot be modified by the recipient. This is the only security and protection system that is realized from human to human via his device, of which he has total control.
Multi-factor authentication
The control of access to the secrets keys OTP is secured in multi-factor authentication that can be freely configured by the user. This is the addition of trust criteria of physical origin such as geolocation, password, fingerprint, as opposed to simple access control by password.
Redundant privacy
Maintains end-to-end privacy from the NFC device. Encrypted OTP secret keys are only stored in the device. They can be individually secured by adding up to 13 different trust criteria. Secret keys are physically impossible to compromise, even when shared.
Cloudless (Serverless)
The contactless OTP manager incorporates Freemindtronic’s EviCypher technology. It does not use a server to operate. The OTP passcode is self-generated physically offline, via the secret key stored encrypted in NFC. The passcode generation is only done in the volatile memory of the NFC phone.
Phone Android NFC compatible
Contactless OTP manager works with Android NFC phones. Everything is managed automatically from the NFC device and the Freemindtronic NFC phone application. Simply pair the NFC device with an NFC phone. So you are free to use any NFC-enabled computer or Android phone anytime, anywhere in any situation. Since the OTP passcodes are one-time or password limited and the secret OTP keys are stored encrypted only in the device.
End-to-end anonymity
Contactless OTP manager preserves your anonymity end-to-end from the NFC device. It does not use any remote server to operate. The solution does not request, collect, transfer or provide any information about the identity of the owner and/or user. It works with almost any type of OTP (TOTP & HOTP).
End-to-end anonymity
Maintains end-to-end privacy from the NFC device. Secret keys only stored encrypted in the NFC. Each key can be individually secured by adding different trust criteria. It is physically impossible to compromise an OTP secret key, even by sharing them.
Zero Trust in NFC phone
The Contactless OTP Manager solution is one of the zero-trust solutions. Indeed, the phone is considered to be presumed corrupt. The solution therefore allows for zero trust of the NFC phone. The secret OTP keys are stored encrypted only in the NFC device. It is used on demand to generate the OTP passcode on demand via the NFC phone’s volatile memory.
Without trusted third party
The trust criteria on the identity of the correspondents are carried out without a trusted third party when sharing the secret OTP keys. They are performed quickly and simply when sharing encryption keys via an encrypted QR Code. The user can add up to 13 different trust criteria to the secret key. To use the key, all trust criteria must be validated. In fact, the recipient who receives the secret key has the certainty of the identity of the sender while keeping his anonymity.
Secure control of the entire value chain
The research and development department are committed to making the Contactless OTP manager hardware solution as secure as possible. That’s why we design, develop and manufacture our software, applications, web browser extensions, electronic design, embedded system and manufacturing tools. We aim to control the entire value chain, from the idea to the manufacture of products and services.
.
Hybrid physical and digital security
Contactless OTP manager uses an ISO/IEC 15693 NFC component to physically secure access to the data stored in its eprom. The encryption keys are stored encrypted with trust criteria, some of which are defined at the discretion of the user. In addition, at least one of the trust criteria is not physically present in the device. This makes it possible to resist an invasive attack. Thus even if the physical access security is corrupted, the data stored in the memory will always remain encrypted.
Some added values that break with the existing
Keeper of encryption keys
No risk of error using the right OTP secret key to generate the OTP passcode everything is automated. In addition, to use the secret key with trust criterion you will have to validate all the trust criteria to be able to generate the OTP passcode. Sin no you simply won’t be able to generate the OTP passcode.
It is obvious that no unauthorized third party can read the passcode.
Contactless OTP Manager offers a hardware solution that is unique in the world.
Sharing secret keys:
- Authentication of correspondents anonymously,
- Multi-criteria trusted authentication from human to human,
- Security of exchanges adaptable according to the awakening strategy related to the surveillance and listening and / or monitoring of communications,
Discretion:
- End-to-end anonymity from an NFC device
Protection against espionage,
- Displaying only OTP passcode
Mobility:
- Always available,
- Use anywhere, anytime, in any situation even extreme,
- Use on an Android NFC phone,
Simplicity and speed of use:
- Just a few seconds to contactless backup otp secret keys
- Just a few seconds to generate an OTP passcode of this these secret keys
- Just a few seconds for encrypted shares between Contactless OTP manager holder
- Ease of sharing OTP secret keys by QR Code encrypted quickly enslaved with trust criteria
Compatibility with other OTP manager solutions:
- Just scan OTP QR Code for automatic backup in NFC device
Physical and digital protection and security:
- A simultaneous level of physical security and OTP secret key security
- An RSA 4096 key generator to exchange encrypted OTP secret keys
- Secure secret keys by adding user-defined physical origin trust criteria
- Multichannel sharing including Air Gap and proximity
Contactless Secret Manager:
- Automatic OTP secret key manager
- Automatic login manager
Segmented key authentication
The patented segmented key authentication system ensures anonymous human-to-human authentication, not machine-to-machine authentication.
So, the level of certainty that you’re communicating with the right person has never been higher. In addition, the management of automated trust criteria independently associated with OTP secret keys, is defined at the discretion of the correspondents.
The latter must have a Contactless OTP manager device to use the OTP secret. Finally, the correspondents may impose without the possibility of modification the conditions of use of the secret case. There is no need for a trusted third party, since trust is established directly between human-to-human correspondents.
Metadata security, monitoring, and display
Everything is encrypted, protected and secured end-to-end from the NFC device.
Even if you are being spied on the advantage of OTP passcode is that it is only used once. Even if it steals your device with the paired NFC phone, it must also know the administrator passwords, user as well as the trust criteria added to the access to OTP secret keys.
In fact, even if an attacker physically gains access to your mobile device, he will not be able to steal the OTP secret key since it is physically not in the phone but only in the NFC device.
The OTP secret key are only in your NFC device Contactless OTP manager and in your pocket.