Home / Products / Tiqr

TiQR Authentication Server

TiQR is an innovative way to authenticate yourself to web applications. It is based on open standards for secure authentication developed by the Open Authentication Initiative (http://www.openauthentication.org). TiQR's unique user friendly features include one-click enrollment using QR codes and secure authentication without having to re-type complicated codes by leveraging dynamic QR codes embedded in web pages. TiQR supports the OCRA suite of authentication protocols. It's security is based on AES 256-bit encryption and the SHA-family functions.

TiQR was invented at SURFnet and was built with help from Egeniq and Stroomt.
To learn more about TiQR, visit the official website at https://tiqr.org/.

Please read our TiQR QuickStart Guide to easily implement TiQR in your Web applications.

		How TiQR Works
	User scans the QR tag. User confirms that he want to log in. User enters his TiQR PIN Code. User logged in to the Web application.

		Where to Download TiQR
	TiQR is Free and is currently available for the followind platforms: Apple iPhone/iPad Google Android

		Where to User TiQR
	RCDevs TiQR Server provides a simple SOAP/XML. The SOAP API is provided with a WSDL service description file. It is also very simple to implement TiQR login into your existing web applications. Sample login pages are available in the Downloads section. With RCDevs TiQR Server, You can use TiQR with: Web Applications (Java, PHP, ASP, .Net... integration) OpenID-enabled Web Sites (with RCDevs OpenID Provider) SAML and Google Apps (With SimpleSAML Plugin) OpenSSH (with TiQR PAM module) Web-based Products (SugarCRM, Joomla, RoundCube...) (COMMING SOON) Any other system (Using our simple integration libraries)

		TiQR Server Key Features
	Extremely user friendly and simple (users do not even need to enter username or password). Extremely secure (relies on OATH OCRA Challenge-Response and AES-256). Simple user registration in User Self-Service Desk and Self-Enrollment WebApps. Simple SOAP/XML API (with WSDL service description) over HTTP/HTTPS. Unlimited Domain support with mappings to LDAP subtrees, LDAP groups or dedicated directories. Per-client application policies (group-based access control & authentication policy). Support multiple LDAP datasources (at the same time). No replication/import/synchronization of your LDAP users. Our solutions use your LDAP users and groups. TiQR settings (security policies and Token types) can be adjusted per users or groups in LDAP. Many configurations available, adjustable per server/domain/group/user/client (through 100% Web interface). Support for both LDAP direct and indirect (Active Directory) groups. Sensitive user data (such as Token keys) are encrypted in LDAP with AES-256. User sessions locking and session duplicates protection (for clustered configurations). Customizable end-user messages for emails, SMS, SOAP, RADIUS messages. Full multilingual support for all end-user messages with Unicode and UTF-8 (per-user language support). Comprehensive logging and accounting in SQL (accessible from the powerful WebADM Log Viewer). Configurable user blocking timers and blocking policies for authentication failures. Uses WebADM network Session Manager with AES-256 encrypted user sessions. Designed for scalability (supports failover and load-balancing). Easy installation, update and configuration in RCDevs WebADM. Mail and SQL system alerts. True random challenge generator. Runs in the high performance WebADM SOAP container (see here for details).