Created
December 4, 2016 16:10
-
-
Save ardinusawan/fe4347b3f5bca9e6e6185da81c602a46 to your computer and use it in GitHub Desktop.
RFC 6238 OTP - 10 digits (Modified from https://tools.ietf.org/html/rfc6238)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import java.lang.reflect.UndeclaredThrowableException; | |
| import java.security.GeneralSecurityException; | |
| import java.text.DateFormat; | |
| import java.text.SimpleDateFormat; | |
| import java.util.Date; | |
| import javax.crypto.Mac; | |
| import javax.crypto.spec.SecretKeySpec; | |
| import java.math.BigInteger; | |
| import java.util.TimeZone; | |
| /** | |
| * This is an example implementation of the OATH | |
| * TOTP algorithm. | |
| * Visit www.openauthentication.org for more information. | |
| * | |
| * @author Johan Rydell, PortWise, Inc. | |
| */ | |
| public class TOTP { | |
| private TOTP() {} | |
| /** | |
| * This method uses the JCE to provide the crypto algorithm. | |
| * HMAC computes a Hashed Message Authentication Code with the | |
| * crypto hash algorithm as a parameter. | |
| * | |
| * @param crypto: the crypto algorithm (HmacSHA1, HmacSHA256, | |
| * HmacSHA512) | |
| * @param keyBytes: the bytes to use for the HMAC key | |
| * @param text: the message or text to be authenticated | |
| */ private static byte[] hmac_sha(String crypto, byte[] keyBytes, | |
| byte[] text){ | |
| try { | |
| Mac hmac; | |
| hmac = Mac.getInstance(crypto); | |
| SecretKeySpec macKey = | |
| new SecretKeySpec(keyBytes, "RAW"); | |
| hmac.init(macKey); | |
| return hmac.doFinal(text); | |
| } catch (GeneralSecurityException gse) { | |
| throw new UndeclaredThrowableException(gse); | |
| } | |
| } | |
| /** | |
| * This method converts a HEX string to Byte[] | |
| * | |
| * @param hex: the HEX string | |
| * | |
| * @return: a byte array | |
| */ | |
| private static byte[] hexStr2Bytes(String hex){ | |
| // Adding one byte to get the right conversion | |
| // Values starting with "0" can be converted | |
| byte[] bArray = new BigInteger("10" + hex,16).toByteArray(); | |
| // Copy all the REAL bytes, not the "first" | |
| byte[] ret = new byte[bArray.length - 1]; | |
| for (int i = 0; i < ret.length; i++) | |
| ret[i] = bArray[i+1]; | |
| return ret; | |
| } | |
| private static final long[] DIGITS_POWER | |
| // 0 1 2 3 4 5 6 7 8 | |
| = {1,10,100,1000,10000,100000,1000000,10000000,100000000,1000000000, 10000000000L }; | |
| /** | |
| * This method generates a TOTP value for the given | |
| * set of parameters. | |
| * | |
| * @param key: the shared secret, HEX encoded | |
| * @param time: a value that reflects a time | |
| * @param returnDigits: number of digits to return | |
| * | |
| * @return: a numeric String in base 10 that includes | |
| * {@link truncationDigits} digits | |
| */ | |
| public static String generateTOTP(String key, | |
| String time, | |
| String returnDigits){ | |
| return generateTOTP(key, time, returnDigits, "HmacSHA1"); | |
| } | |
| /** | |
| * This method generates a TOTP value for the given | |
| * set of parameters. | |
| * | |
| * @param key: the shared secret, HEX encoded | |
| * @param time: a value that reflects a time | |
| * @param returnDigits: number of digits to return | |
| * | |
| * @return: a numeric String in base 10 that includes | |
| * {@link truncationDigits} digits | |
| */ | |
| public static String generateTOTP256(String key, | |
| String time, | |
| String returnDigits){ | |
| return generateTOTP(key, time, returnDigits, "HmacSHA256"); | |
| } /** | |
| * This method generates a TOTP value for the given | |
| * set of parameters. | |
| * | |
| * @param key: the shared secret, HEX encoded | |
| * @param time: a value that reflects a time | |
| * @param returnDigits: number of digits to return | |
| * | |
| * @return: a numeric String in base 10 that includes | |
| * {@link truncationDigits} digits | |
| */ | |
| public static String generateTOTP512(String key, | |
| String time, | |
| String returnDigits){ | |
| return generateTOTP(key, time, returnDigits, "HmacSHA512"); | |
| } | |
| /** | |
| * This method generates a TOTP value for the given | |
| * set of parameters. | |
| * | |
| * @param key: the shared secret, HEX encoded | |
| * @param time: a value that reflects a time | |
| * @param returnDigits: number of digits to return | |
| * @param crypto: the crypto function to use | |
| * | |
| * @return: a numeric String in base 10 that includes | |
| * {@link truncationDigits} digits | |
| */ | |
| public static String generateTOTP(String key, | |
| String time, | |
| String returnDigits, | |
| String crypto){ | |
| // int codeDigits = Long.decode(returnDigits).intValue(); | |
| int codeDigits = 10; | |
| String result = null; | |
| // Using the counter | |
| // First 8 bytes are for the movingFactor | |
| // Compliant with base RFC 4226 (HOTP) | |
| while (time.length() < 16 ) | |
| time = "0" + time; | |
| // Get the HEX in a Byte[] | |
| byte[] msg = hexStr2Bytes(time); | |
| byte[] k = hexStr2Bytes(key);byte[] hash = hmac_sha(crypto, k, msg); | |
| // put selected bytes into result int | |
| int offset = hash[hash.length - 1] & 0xf; | |
| int binary = | |
| ((hash[offset] & 0x7f) << 24) | | |
| ((hash[offset + 1] & 0xff) << 16) | | |
| ((hash[offset + 2] & 0xff) << 8) | | |
| (hash[offset + 3] & 0xff); | |
| long otp = (long) (binary % DIGITS_POWER[codeDigits]); | |
| result = Long.toString(otp); | |
| while (result.length() < codeDigits) { | |
| result = "0" + result; | |
| } | |
| return result; | |
| } | |
| public static void main(String[] args) { | |
| // Seed for HMAC-SHA1 - 20 bytes | |
| String seed = "3132333435363738393031323334353637383930"; | |
| // Seed for HMAC-SHA256 - 32 bytes | |
| String seed32 = "3132333435363738393031323334353637383930" + | |
| "313233343536373839303132"; | |
| // Seed for HMAC-SHA512 - 64 bytes | |
| String seed64 = "3132333435363738393031323334353637383930" + | |
| "3132333435363738393031323334353637383930" + | |
| "3132333435363738393031323334353637383930" + | |
| "31323334"; | |
| long T0 = 0; | |
| long X = 30; | |
| long testTime[] = {59L, 1111111109L, 1111111111L, | |
| 1234567890L, 2000000000L, 20000000000L}; | |
| String steps = "0"; | |
| DateFormat df = new SimpleDateFormat("yyyy-MM-dd HH:mm:ss"); | |
| df.setTimeZone(TimeZone.getTimeZone("UTC")); | |
| try { | |
| System.out.println( | |
| "+---------------+-----------------------+" + | |
| "------------------+--------+--------+"); | |
| System.out.println( | |
| "| Time(sec) | Time (UTC format) " + | |
| "| Value of T(Hex) | TOTP | Mode |"); | |
| System.out.println( | |
| "+---------------+-----------------------+" + | |
| "------------------+--------+--------+"); | |
| for (int i=0; i<testTime.length; i++) { | |
| long T = (testTime[i] - T0)/X; | |
| steps = Long.toHexString(T).toUpperCase(); | |
| while (steps.length() < 16) steps = "0" + steps; | |
| String fmtTime = String.format("%1$-11s", testTime[i]); | |
| String utcTime = df.format(new Date(testTime[i]*1000)); | |
| System.out.print("| " + fmtTime + " | " + utcTime + | |
| " | " + steps + " |"); | |
| System.out.println(generateTOTP(seed, steps, "8", | |
| "HmacSHA1") + "| SHA1 |"); | |
| System.out.print("| " + fmtTime + " | " + utcTime + | |
| " | " + steps + " |"); | |
| System.out.println(generateTOTP(seed32, steps, "8", | |
| "HmacSHA256") + "| SHA256 |"); | |
| System.out.print("| " + fmtTime + " | " + utcTime + | |
| " | " + steps + " |"); | |
| System.out.println(generateTOTP(seed64, steps, "8", | |
| "HmacSHA512") + "| SHA512 |"); | |
| System.out.println( | |
| "+---------------+-----------------------+" + | |
| "------------------+--------+--------+"); | |
| } | |
| }catch (final Exception e){ | |
| System.out.println("Error : " + e); | |
| } | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Did you make any changes apart from adding the two new longs to the DIGITS_POWERS arrag for 10^9 and 10^10?