No-Passwd.Net

About No-Passwd.Net Project

Web sites ask users "Forgot your password?" at their login forms, as if it were users' guilty. No, it's not users' guilty at all. It would be guilty of network service providers, only offering password authentication, though.

This project is to seek alternatives of password authentication, and to try to stop practices using password authentication for network services (in near future).

No-Passwd.Net follows:

• Free Software philosophy
• Franklin Street Statement on Freedom and Network Services

Alternatives, Second Bests, and Non Solutions

Alternatives 1: Technically stable, but only for experts

• Secure Shell Protocol (for shell and file transfer)
• OpenPGP card + GnuPG + OpenSSH
• TLS with client certificate authentication (for Web, IMAP, SMTP)
• OpenPGP card + GnuPG + scute + Firefox : Apache (for Web)
• OpenPGP card + GnuPG + scute + Thunderbird : Dovecot (for IMAP)

Alternatives 2: Technically experimental

• Enigform + Firefox : mod_openpgp + Apache (for Web)
• GnuTLS with OpenPGP authentication
• WANTED: GnuTLS enhancement which calls gpg-agent (instead of implementing OpenPGP things independently)
• BrowserID
• WANTED: Mozilla extention to connect BrowserID and scute

Second bests (because it's not end-to-end)

• OpenID
• SSO technology, such as SAML

Non Solutions

• Password manager
• Password proxy

Network services of No-Passwd.Net Project (in development)

• Japanese documentation towards "No-Passwd.Net" (under construction)

Memorandum for No-Passwd.Net (in Japanese).

• NPN Junction (demo)

NPN (No-Passwd.Net) Junction serves as an OpenID provider, so that users can log-in network services such as identi.ca by OpenID. Since users can log in to NPN Junction with TLS client certificate authentication, users need to enter no password to remote sites through network. It means that there are no shared secret remotely. TLS client certificate issuing service for NPN Junction for this site is under consideration.

• Git repository: here

Soure code of this web site and NPN Junction, so that you can use NPN Junction for yourself, and possibly fork it.

Support (under contemplation)

• Membership program for individuals
• Commercial Affiliates

Links

• Free Software Initiative
• www.gniibe.org
• STEED