[RADIATOR] TOTP clock drift tracking

Heikki Vatiainen hvn at open.com.au
Thu Aug 23 06:18:49 CDT 2012


On 08/21/2012 03:33 PM, Roy Badami wrote:

> I'm not sure how commonplace TOTP (rather than HOTP) hardware tokens are 
> at the moment - which might be why you haven't had reports of problems - 
> but I'd be surprised if they were somehow immune to clock drift.

Thanks for your comments. Tracking drift is certainly needed if the
drift can be minutes. Thinking of it more, it does not sound that bad
with a token with a long lifetime and reasonable price.

We will take a look at adding support for drift tracking.

Thanks,
Heikki

-- 
Heikki Vatiainen <hvn at open.com.au>

Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS,
NetWare etc.


More information about the radiator mailing list