KH Authenticator Server

This site provides installation and update downloads for the KH Authenticator application which registers and authenticates a user without a password or email address. The authentication process qualifies as multifactor. The application is installed on something you have. To access the online account, you must provide a PIN (something you know) or a recognized fingerprint scan (something you are). The KH Authenticator application is developed with .NET MAUI and is available for Windows and Android.

I researched and developed the Users Without Passwords Project (UWPP) which implements WebAuthn, also known as FIDO2, instead of passwords. WebAuthn is more secure and multi factor by design. Basic password authentication is familiar and difficult to replace with WebAuth. WebAuth requires the user to possess a FIDO2 device like Windows Hello, mobile lock screen, or a security key. The Users Without Identity Project (UWIP) implements user authentication and two factor authentication like MS Identity but with a clear and modifiable design. UWIP implements two factor authentication with the (TOTP) standard and is compatible with the MS Authenticator or Google Authenticator applications. The Users With Device 2FA Project (UWD2FAP) implements the UWIP but replaces TOTP with WebAuth for two factor authentication. The Users With Comments Project (UWCP) implements the UWD2FAP and adds a managed and moderated comment workflow for multiple topic discussions. All of these projects implement the KH Authenticator API. The projects are available for download from KenHaggerty.Com which also supports the KH Authenticator API.