»Home
»News
»Download
»Documentation
     »oathtool(1)
     »pskctool(1)
     »Liboath API
     »PSKC Tutorial
     »Libpskc API
     »pam_oath
»Contribute
OATH Toolkit
One-time password components
2024-10-03: OATH Toolkit 2.6.12 Released

Read the NEWS file for release highlights and a full list of changes. See the Download page for download links.

Important
Security advisory CVE-2024-47191 about bug in OATH Toolkit version 2.6.7 to 2.6.11 inclusive.

Introduction

OATH Toolkit provide components to build one-time password authentication systems. It contains shared C libraries, command line tools and a PAM module. Supported technologies include the event-based HOTP algorithm (RFC 4226), the time-based TOTP algorithm (RFC 6238), and Portable Symmetric Key Container (PSKC, RFC 6030) to manage secret key data. OATH stands for Open AuTHentication, which is the organization that specify the algorithms.

The following components are included:

  • liboath: A shared and static C library for OATH handling.

  • oathtool: A command line tool for generating and validating OTPs.

  • pam_oath: A PAM module for pluggable login authentication for OATH.

  • libpskc: A shared and static C library for PSKC handling.

  • pskctool: A command line tool for manipulating PSKC data.

For further information, see the Documentation page.

License

OATH Toolkit is free software and is licenced under the terms of the LGPLv2+ (libraries) and GPLv3+ (tools).

External Resources and Applications

Here are resources that I know of, if you know of more drop me a line and I’ll add them to the list.

Projects using OATH Toolkit:

Related applications:

Please let me know if any of these links need updating.

Mailing list

Discussion around the OATH Toolkit happens on the OATH Toolkit discussion list, this keeps things transparent and gives everyone a chance to comment.