octokey.tex

\documentclass[letterpaper,twocolumn,10pt]{article}
\usepackage{usenix,epsfig}
\usepackage{cite}
\usepackage{hyperref}
\usepackage{amsmath}
\newcommand*{\concat}{\mathbin{\|}}
\hyphenation{time-stamp}
\sloppy

\begin{document}
\date{} % No date
\title{\Large \bf Octokey: Public key authentication for the web}
\author{{\rm Martin Kleppmann} \and {\rm Conrad Irwin}}
\maketitle

\subsection*{Abstract}

We propose Octokey, a cryptographic protocol for authenticating users, designed as a viable
replacement for password authentication in consumer internet use cases. When a user signs up to a
service, they provide a public key, and clients subsequently authenticate by signing a challenge
with the user's private key. We describe key management protocols for enrolling new devices,
revoking lost devices, protecting private keys against offline attacks, and granting access to
partially trusted devices. While Octokey can be used with hardware security modules, it is designed
to provide good security in a software-only configuration.

\input{intro}
\input{protocol}
\input{interdevice}
\input{threat}
%\input{questions}
\input{others}

{\footnotesize
    \bibliographystyle{plain}
    \bibliography{references}{}
}

\end{document}