Commits

Devin Martin  committed 5573c0b

Edited online

  • Participants
  • Parent commits 42e7aea

Comments (0)

Files changed (1)

 It is based largely on a library called [[https://bitbucket.org/devinmartin/otp-sharp/wiki/Home|OTP-Sharp]] which does all the heavy lifting in calculating one time passwords.  OtpSharp is also released under an MIT License.
 
 == Disclaimer ==
-**Ensure that all measures are taken to safeguard your key.**
 
-This may be in another entry in KeePass or another hardened store of some kind.  This is your responsibility.
+Every effort has gone into ensuring that KeeOtp generates correct TOTP codes and that KeeOtp is bug free and will preserve your secret key.
+
+Nevertheless it is up to you to **Ensure that all measures are taken to safeguard your key.**
+
+Most systems that rely on TOTP are very hard to unlock if you lose your secret key.  In the case of Google 2-step verification you should ensure that you have backup options (SMS, printed list of one time codes) in the unlikely event that KeeOtp fails to preserve your key.
+
+Other systems may have different options and it is your responsibility to preserve whatever data may be needed if KeeOtp should fail.  This may be in another entry in KeePass or another hardened store of some kind.
 
 == Compatability ==
 This plugin supports the TOTP standard and should work with any service that is compliant with [[http://tools.ietf.org/html/rfc6238|RFC 6238]] and uses SHA1 as the HMAC hashing algorithm.  Sha 256 and Shs 512 are not currently supported but likely will be in the near future.  It supports any specified time step and will generate 6 or 8 digit codes.