Passcode Integration

Early Access

Introduction

The Secure Remote Password (SRP) protocol is a zero-knowledge authentication protocol that allows secure password verification without storing or sending the password over the network to the server. Using SRP, only the client ever knows what the password is. Cryptographic information is sent to the server to verify that the password entered by the user is the same as the one entered upon creation.

TrustX implements SRP using a passcode. A passcode (PIN or password) is a sequence of letters, numbers and symbols used by a user as a knowledge-based authentication modality. Various rules define what the system accepts as a valid passcode and can be defined in the passcode policy.

Guides

• Passcode Authentication - How to authenticate a passcode associated with an Identity Store User.
• Passcode Registration - Covers passcode registration for an Identity Store User.
• Passcode Renewal - An Identity Store User that has a passcode registered to them can change this passcode using a renewal flow.

Further Reading

• Managing Identity Stores - Identity Stores serve as a director of Users created in TrustX. This guide covers Identity Store configuration and management options.
• Managing Users - Describes how to view and manage Users from the Backoffice application and TrustX API.
• Managing Policies - Describes how to create Identity Store policies. A passcode policy is required to register and authenticate passcodes.