Posts from July 2023

• Extracting TOTP keys from a proprietary Android 2FA app

  04 July 2023 | totp 2fa mfa cryptography encryption | Comment

  This is an analysis of an early 2010s proprietary Android-based two-factor authentication (2FA) application for a particular cloud service provider – à la Okta, or Microsoft Authenticator. This particular cloud service has been publicly criticised for not supporting industry standard 2FA algorithms such as time-based… »