Reference Architecture
OATH Reference Architecture Version 2.0
OATH Reference Architecture Version 1.0
Standards
1. Authentication Methods
1.1 HOTP: An HMAC-Based OTP Algorithm (RFC 4226)
TXT version from IETF web site
PDF Version
1.2. TOTP – Time-based One-time Password Algorithm (RFC 6238)
RFC 6238 on IETF website
1.3. OCRA – OATH Challenge/Response Algorithms Specification
RFC 6287 on IETF website
2. Provisioning
IETF KeyProv Working Group
– PSKC – Portable Symmetric Key Container, RFC 6030
– DSKPP – Dynamic Symmetric Key Provisioning Protocol, RFC 6063
3. Other
1. OATH Token Identifier Specification
List of registered manufacturer prefixes (OMPs)
2. Sharing Transaction Fraud Data (RFC 5941)
– Text from IETF web site
– OATH Thraud Specifications Page
Draft Specifications
Provisioning
- IETF Bulk Provisioning Protocol
Version 1 draft from IETF web site
Validation
VALID: Authentication-Data Validation Service Interface definition
Version 00 draft from IETF web site