Close
0%
0%

OTPNetwork: SecureCom for the Paranoid

A one-time pad implementation, with hardware/software specifications to provide unflawed security in long distance communications.

mikeMike
Following
Liked Like project

Just one more thing

To make the experience fit your profile, pick a username and tell us what interests you.

Pick an awesome username
hackaday.io/
Your profile's URL: hackaday.io/username. Max 25 alphanumeric characters.
Pick a few interests
Projects that share your interests
People that share your interests

We found and based on your interests.

Choose more interests.

OK, I'm done! Skip
Similar projects worth following
372 views
0 comments
672 followers
View Gallery
* Development of this project has been resumed, source code and information is available on github*

https://github.com/mrothfuss/otp-vpn

This project sets up a TCP proxy that wraps a client/server connection in a one time pad. Here is an example dataflow.

Web Client OTP Client OTP Router OTP Server Web Server

Three devices are needed in this scheme.
Network owner: OTP Router
Network client: Web Client / OTP Client
Network server: Web Server / OTP Server

At any given moment, the only cleartext data is the packet length.

No one will know where either the server or the client are. Only the router is at a centralized location. The network server doesn't even need ports to be opened. Anyone using the network must physically visit the OTP Router to be assigned a key.

A small device will be outlined to allow usage of the OTP network on a non-trusted machine.

Other details about the programs:

Keys are tied to connections by an ID/Password pair. This information is sent encrypted using the OTP for that ID/Password pair.

Random data is sent between the OTP programs to prevent network analysis on the packet timing/lengths between clients and servers.


Minimum installation guidelines (OTP Router):
At a minimum, the data connecting an ID and Password to a key file MUST be kept in volatile memory. Key files may be kept on non-volatile memory to allow for cheaper keys.

A small device will be outlined to allow usage of the OTP network on a non-trusted machine. The key, username, and password will remain secure -- but the endpoint data would not be.

Another device (and program) may be designed to transmit this information using a SDR.

*Status*

The program is 98% complete. I've tested using IRC with great success.

View project log

Enjoy this project?

Share

Discussions

Similar Projects

WiFi Positioning System
Project Owner Contributor

WiPS

costin-stroieCostin Stroie

Secure ESP8266 MQTT proof of concept
Project Owner Contributor

Secure ESP8266 MQTT p.o.c.

w-taylorW. Taylor

Detect your LAN from browser
Project Owner Contributor

LAN Detector

dev-labdev-lab

Test Access Port over HTTP
Project Owner Contributor

HTTaP

yann-guidon-ygdesYann Guidon / YGDES

Does this project spark your interest?

Become a member to follow this project and never miss any updates

Going up?

About Us Contact Hackaday.io Give Feedback Terms of Use Privacy Policy Hackaday API

© 2024 Hackaday

Yes, delete it Cancel

Report project as inappropriate

You are about to report the project "OTPNetwork: SecureCom for the Paranoid", please tell us the reason.

Send message

Your application has been submitted.

Remove Member

Are you sure you want to remove yourself as a member for this project?

Project owner will be notified upon removal.