J2ME One Time Password Generator for mobile devices

This applications generates one time passwords based on a secret key and either a counter or the current time. It uses the schemes specified in RFC 4226 and the TOTP draft.

Google 2-step Verification

OTPGen is also compatible with Google's 2-step verification. However, don't blame me if it doesn't work and you get locked out. Also make sure to setup the backup options. To set it up follow the following instructions:

  1. Go to the setup page for your Google account
  2. Select Android as your phone and hit Next when it prompts to install the Android application
  3. Create a new account in OTPGen with the default settings (time based, Base32 format)
  4. Expand the "Can't scan the QR code?" option on the page and enter the secret key displayed

Compatibility

Theoretically, OTPGen should work on any phone which supports Java ME with MIDP 1.0. In practice it probably won't ;-) It has been tested on the following devices. Please let me know if it works on something not listed here.

Install/Download

To install the application, enter one of the following URLs in your phone's browser, or if your phone supports QR or DM codes, scan one of the following codes.

xrl.us/bkb7cp
http://mene.za.net/otpgen.jad
http://mene.za.net/otpgen.jad http://mene.za.net/otpgen.jad

You can also download the JAR file directly or browse a list of available versions. The source code is available as an archive or Bazaar repository and is licensed under the GNU General Public License.

Version History

0.1.3 - 2011/05/10
Correct refresh interval for time OTPs.
0.1.2 - 2011/05/10
Change database schema to include a schema version (requires that application data be deleted).
Respect digits setting when generating counter based OTPs.
0.1.1 - 2011/05/07
Automatically refresh time based OTPs while they are displayed.
0.1.0 - 2011/05/06
Initial release.

Contact

Feel free to contact me if you have any feedback.

Valid XHTML 1.0 Strict Valid CSS!