Fenrir Project

From 31C3_Public_Wiki
Jump to: navigation, search

Description This project aims at replacing TCP,TLS,Oauth,Kerberos, while giving huge flexibility, federated environments,
Has website http://www.fenrirproject.org/blog
Persons working on Luker
Tags security, protocol, federation
Located at assembly WeFixTheInternet
Other projects...


Fenrir's aim is to provide a single, efficient and extremely flexible protocol to manage authentication, authorization and encryption in federated environments.

You can follow its development on the new blog, https://www.fenrirproject.org/blog

It mimics a lot SCTP or QUIC in terms of transport features, with both reliable and unreliable transmission, but it also includes encryption, federated authentication, and a lot of other features, such as cross-domain single sign-on.

Its aim is to replace SSL/TLS, Kerberos, OAuth and basically any other encryption or authentication scheme, while also avoiding the X.509 certificates.

The trust of the system relies on DNSSEC, but anything else can be used.

The federation divides the protocol into authentication servers, services and client, with tokens exchanged instead of password.

The final picture should be that you can manage all your accounts on all domains from a single source, while using multiple rules on the visibility of services, tokens on a per-device basis.