SOURCE: OATH, the initiative for Open AuTHentication

August 02, 2005 18:57 ET

Safehaus Endorses OATH Reference Architecture

Initiative for Open AuTHentication (OATH) and Safehaus Will Work to Integrate Open Source HOTP De Facto Industry Standards

WASHINGTON CROSSING, PA -- (MARKET WIRE) -- August 2, 2005 -- OATH, the initiative for Open AuTHentication, today announced that Safehaus, which provides high quality open-source software components related to directory and security infrastructure, has integrated Open Source HOTP using the OATH Reference Architecture with its Triplesec Authentication Server and HausKeys HOTP based soft token. This project targets enterprise organizations, allowing them to use OATH and Safehaus to deploy an open strong authentication solution for Windows, Macintosh, and UNIX users.

Safehaus' endorsement of the OATH Reference Architecture and use of the HOTP algorithm specification in HausKeys represents an important milestone towards the ubiquity of strong authentication. One Time Passwords (OTPs) are one of the simplest and most versatile forms of two-factor authentication, because they don't require special client software for access to the ports of remote machines. As a result, users can roam across multiple machines, including home computers, kiosks, and personal digital assistants.

HOTP is an open, standards-based approach to providing strong authentication. HOTP can be implemented through hardware manufacturers or software developers who create interoperable authentication devices and software agents used across all networks, applications, and devices. The OATH and Safehaus implementation of standards-based, freely available OTP algorithms will further accelerate the adoption of strong authentication in open source environments.

"We're pleased to work with OATH and its growing membership towards implementing HOTP algorithm within HausKeys," said Alex Karasulu, a founder of Safehaus. "OATH's reference architecture, being an open standard supported by multiple industry participants, aligns well with our open-source product philosophy"

"Safehaus will work with OATH to promote open strong authentication and to further the OATH reference architecture effort," said Colleen Kulhanek, director of business development, SafeNet, Inc. and OATH marketing chair." This approach provides organizations a deployment approach for including Windows clients in a Kerberos environment while allowing flexibility and choice in directory deployments. We are very enthusiastic about Safehaus' support for HOTP within the HausKey development work. Our work together furthers the development of royalty-free open authentication."

HausKeys and Triplesec Server, an authentication solution developed by Safehaus, implements the HOTP algorithm, promoted by OATH. Additional benefits of the Safehaus solution also include:

--  Time synchronization independent operation
--  Automatic resynchronization protocol keeps devices in synch with
--  Tunable security parameters allow IT to adjust security strength
--  Forgiving: algorithm operates even when servers are disconnected from
    replication clusters and users roam
--  Designed for low resource utilization on mobile devices
--  No mobile device connectivity required.
Safehaus endorsed OATH's Reference Architecture, which guides technical development towards a comprehensive industry-endorsed solution for open authentication. The principles behind the Reference Architecture include:
--  Open and royalty-free specifications for strong authentication
--  Device innovation and embedded specified technology building blocks
    for strong authentication
--  Native platform support
--  Interoperable modules that enable best-of-breed hardware and software
    solutions through a framework of interoperable components.
The Reference Architecture document's client framework section addresses topics of authentication methods, innovation in authentication tokens for multifunction purposes or mobile devices, token interfaces for one-time password tokens, and authentication protocols. The Reference Architecture document is free and available to interested organizations at Registration is required to access the document.

About Safehaus is the first ecosystem of IT, ISV and open source developers providing high quality open-source software components related to directory and security infrastructure. By commoditizing directory and security related software, allows innovation to "move up" to the next layer of higher functionality, which further fuels, the innovation of enterprise security software.

About the Initiative for Open AuTHentication

The Initiative for Open AuTHentication (OATH) is a collaboration of leading device, platform and application companies. OATH participants hope to foster use of strong authentication across networks, devices and applications. OATH participants work collectively to facilitate standards work and build a reference architecture for open authentication while evangelizing the benefits of strong interoperable authentication in a networked world. OATH is actively seeking all participants who share a common vision of open authentication.

OATH is dedicated to helping customers reduce the cost and complexity of deploying strong authentication within enterprises, and across the Internet. Since its formation, OATH's membership includes security industry leaders from token manufacturers, platform vendors, smartcard providers, and security services companies. End user companies are joining OATH to add their voice and ideas towards the goal of open authentication.

Some current OATH members include: ActivCard, Inc.; Aladdin Knowledge Systems; ARM; Assa Abloy ITG; AudioSmartCard; Authenex, Inc.; Aventail Corporation; Axalto, Inc.; BEA Systems; BMC Software; Checkpoint Software Technologies; Digital Persona; Diversinet Corp.; Entrust Technologies, Inc.; Forum Systems, Inc.; Gemplus Corp; IBM; IMCentric, Inc.; iovation; Juniper Networks, Inc.; K.K. Athena Smartcard Solutions; Livo Technologies SA; Passlogix, Inc.; Phoenix Technologies Ltd.; Portwise, Protocom Development Systems, RedCannon Security, Inc.; SafeNet, Inc.; Signify; Smart Card Alliance; TriCipher, Inc.; VASCO Data Security; and VeriSign, Inc.

OATH members are united in three key goals: promote secure and safe online transactions for users; leverage existing standards to create an open reference architecture for strong authentication; and reduce the cost and complexity of strong authentication to drive broad enterprise and consumer adoption.

For more about OATH, e-mail or visit

All company and product names are trademarks of their respective holders

Contact Information

    Dan Chmielewski
    Madison Alexander PR, Inc
    Email Contact

    Joann Killeen
    Madison Alexander PR, Inc.
    Email Contact