Linux 软件免费装
Banner图

Teddy ID Lite

开发者 matrixplatform
更新时间 2015年9月12日 00:56
捐献地址: 去捐款
PHP版本: 3.0 及以上
WordPress版本: 4.3
版权: Public domain

标签

login 2FA authentication password sso log in sign in two factor mfa multi-factor single sign-on two-factor authentication TFA passwordless 2-factor password manager

下载

详情介绍:

TeddyID Lite allows your users to log in without entering a password, yet more securely. Users will have to enter a password only once, TeddyID will suggest encrypting and saving the password. The next time the user tries to log in, the user just clicks his username (see the screenshot), we pick a random picture and send it to user's two devices: his computer and his phone (with our free app installed). The user makes sure the pictures match and taps "Yes" on his phone. We decrypt the password, fill it in, and submit the form. Login complete. With TeddyID Lite, your users won't have to remember, nor type, the password for your site. This is a free service for WordPress based sites. Nothing is changed in your wordpress database. Passwords are encrypted/decrypted only in browser.

安装:

  1. Install the plugin from the Plugins page in your /wp-admin/
  2. Activate the plugin
  3. That's it, test it at your login page: TeddyID will display a hint when you click inside username or password field.

屏幕截图:

  • Saving password.
  • List of accounts to log in as.
  • Confirmation picture. User needs to check that the same picture was sent to his phone and tap Yes on the phone. He'll be logged in in a few seconds.

升级注意事项:

1.0 N/A

常见问题:

Do I have to pay?

No.

Do my users pay anything?

No, nothing, apart from tiny network costs according to their data plan. Also see our users' FAQ.

How are passwords secured?

In simple words, each password is split into two parts, one is stored in user's browser, the other is stored in our server, and the two parts meet only in the browser. One part without the other is useless for an attacker. On our site you'll find more detailed security analysis and description of all the cryptography behind it.

How is it better than just saving passwords in browser that every modern browser can already do?

A second factor - mobile phone - is required for login. This is more secure in case an attacker gains access to the user's computer.

How is it better than using a password manager like LastPass?

First, there is no master password that can be weak or forgotten like any other password. We check possession of the mobile phone instead. Second, few people actually bother using password managers, that means they use weak passwords, reuse the same password, and often forget them. With TeddyID, you are giving them both better security and better convenience.

更新日志:

1.0 Initial release.