Loitr is a 2-Factor(knowledge & possession factors) authentication mechanism that any website can use. We have just released the Wordpress plugin. Any user of your blog can download the Loitr app & scan the activation QR visible on their Dashboard(visible once plugin is activated by the blog admin) and next time all they have to do is scan the login QR at the login page with the Loitr app on their phone and they will be logged in.
Loitr doesn't need to know usernames or passwords of users of your blog. Loitr doesn't add to the security risk. And since there are no usernames or passwords involved, it does away with sniffing, key-logging, or any variant of a Man-In-The-Middle attack. Impersonation is not at all possible with Loitr.
I'd love to hear what the community thinks of it.
1 comment
Show HN: A 2-Factor contact-less authentication mechanism | Heykuki News