📜 Post with us on Reddit
📝 Create a new article
🏭 Create a company page
🇬🇧 - in English
🇫🇷 - en Français (FR)
🇵🇹 - em Português (PT)
🇩🇪 - in Deutsch (DE)
🇯🇵 - 日本語で (JA)
Sponsored articles

You can edit almost every page by Creating an account. Otherwise, see the FAQ.

KeyAuth

From EverybodyWiki Bios & Wiki



Script error: No such module "Draft topics". Script error: No such module "AfC topic".


KeyAuth
KeyAuth Dashboard on the website
KeyAuth Dashboard on the website
Original author(s)William nelson
Developer(s)Nelson Cybersecurity LLC
Initial releaseNovember 26, 2020 (2020-11-26)
Repositorygithub.com/KeyAuth/KeyAuth-Source-Code
Written inPHP
Engine
    Operating systemLinux, macOS, Windows, Android, iOS
    Available in1 languages
    List of languages
    English
    LicenseWebsite: AGPL-3.0-only[1]
    SDKs: MIT License[2]
    Websitehttps://keyauth.cc

    Search KeyAuth on Amazon.

    KeyAuth is a freemium open-source authentication service aimed at mitigating digital piracy. The platform offers several SDKs for various programming languages such as C#[3], C++[4], Python[5], Java[6], JavaScript[7], PHP[8], Lua, and Go.[9] KeyAuth provides a free cloud-hosted service[10] as well as the ability to self-host.[11]

    Primary use of KeyAuth occurs from its website[10], however there is also a mobile app for Android available[12] as well.

    Features[edit]

    Overall security[edit]

    Other[edit]

    • License key management
    • User management
    • Chat channels, allow your users to communicate amongst each other
    • Webhooks, ability to send requests to an API from an SDK without leaking the URL
    • File download, ability to download files in the SDK without leaking the download URL
    • Global variables, store strings on server behind authentication
    • User variables, store a string unique to each user on server behind authentication
    • Logging, collect events on the server or forward them to a Discord webhook
    • Blacklist IP addresses or Hardware ID from utilizing your software
    • Deny access to your software from IP addresses originating from VPNs
    • Customer panel, allow your users to view their user data on a website and reset their Hardware ID bound to their account
    • Create sub-accounts to allow other people to manage your software
    • Reseller system so you can allow people to buy license keys to your software and have the ability to manage those license keys from the website
    • Web loader, allow your users to login to your software from the website and interact with the software from the website[15]

    History[edit]

    KeyAuth was founded on November 26, 2020 by Nelson Cybersecurity LLC. The founder William Nelson was first skeptical about open-source software, releasing KeyAuth as proprietary software.

    Upon further investigation into open-source, learning the security benefit of having more eyes inspecting the code, and customer wants to further customize KeyAuth; the founder released the KeyAuth source code on GitHub under an open-source license on June 23, 2021.

    To help support development costs and provide users with a way to pay for the setup of the software on their server, the founder made the source code of paid KeyAuth features proprietary on September 3, 2022.

    Support for Russian customers[edit]

    The founder of KeyAuth disagrees with the decision of companies such as VISA and Mastercard to block Russian consumers. He doesn't believe that punishing citizens which don't all support the war in Ukraine is the right thing to do. KeyAuth has added payment methods such as Perfect Money and plenty of cryptocurrencies to ensure Russians can continue to be able to purchase KeyAuth. Fortunately for them, their CDN provider Cloudflare will not block Russian users - stating "we believe that shutting down Cloudflare's services entirely in Russia would be a mistake"[16]

    New Ownership[edit]

    The founder of KeyAuth William Nelson is an engineering university student and claims he can't find much time to work on his service anymore. On January 18th, 2022, he announced that KeyAuth would soon be under the ownership of a new individual. This individual doesn't reveal his identity though goes by the alias 'It's Networking'. He is currently managing KeyAuth beneath the founder and is expected to be given full ownership in late 2023.

    Security Concerns[edit]

    The KeyAuth founder granted a developer who was the owner of the now-defunct authentication service trinityseal.me access to the source code and database of the KeyAuth website. On June 06, 2021, this developer became disgruntled and leaked the source code, which was proprietary at the time[17]. He then demanded a $500 ransom to keep the database private. Given that Cybersecurity experts state you should never pay a ransom[18], the KeyAuth founder refused to pay and the database was subsequently leaked as well.[17]

    While the security incident did not occur as a result of a vulnerability in the code, people were understandably worried. This only further increased the demand for KeyAuth to become open source software. This is a very good thing in the eye of several users, which were able to see this become a reality later that month.

    KeyAuth has also been the target of several digital pirates.These pirates would create Proof of Concepts (POCs) claiming that any application using KeyAuth on the programming language they targeted, mostly C++, could be circumvented and essentially pirated by whomever. The KeyAuth founder disputed these POCs by claiming that software adequately protected with methods such as obfuscation and anti-tamper would be resistant to these issues.[19]

    References[edit]

    1. "KeyAuth License Agreement". GitHub. 26 December 2022.
    2. "KeyAuth SDK License". GitHub. 26 December 2022.
    3. KeyAuth-CSHARP-Example, KeyAuth, 2022-12-21, retrieved 2022-12-26
    4. KeyAuth-CPP-Example, KeyAuth, 2022-11-30, retrieved 2022-12-26
    5. KeyAuth-Python-Example, KeyAuth, 2022-11-30, retrieved 2022-12-26
    6. spray (2022-12-24), KeyAuth-JAVA-API, retrieved 2022-12-26
    7. mazkdevf (2022-09-02), KeyAuth-JS-Example - Multi API Example's, retrieved 2022-12-26
    8. KeyAuth-PHP-Example, KeyAuth, 2022-11-30, retrieved 2022-12-26
    9. mazkdevf (2022-11-22), mazkdevf/KeyAuth-Go-Example, retrieved 2022-12-26
    10. 10.0 10.1 KeyAuth. "KeyAuth - Open Source Auth". keyauth.cc. Retrieved 2022-12-26.
    11. 11.0 11.1 KeyAuth-Source-Code, KeyAuth, 2022-12-23, retrieved 2022-12-26
    12. "KeyAuth - Apps on Google Play". play.google.com. Retrieved 2022-12-26.
    13. KeyAuth-Source-Code, KeyAuth, 2022-12-23, retrieved 2022-12-26
    14. Nelson, William. "Setup YubiKey/Security Key - KeyAuth". Archived from the original on 2022-12-26. Unknown parameter |url-status= ignored (help)
    15. KeyAuth Web Loader (Control your C++ application from website!), retrieved 2022-12-26
    16. "Steps we've taken around Cloudflare's services in Ukraine, Belarus, and Russia". The Cloudflare Blog. 2022-03-07. Retrieved 2022-12-26.
    17. 17.0 17.1 Meir, Alex (2021-06-06). "Keyauth.com Breached - Source | Database | Dox on owner "Mak"". archive.ph. Retrieved 2022-12-26.
    18. Freed, Anthony M. "Three Reasons Why You Should Never Pay Ransomware Attackers". www.cybereason.com. Retrieved 2022-12-26.
    19. Nelson, William (2022-08-01). "Security practices - KeyAuth". docs.keyauth.cc.


    This article "KeyAuth" is from Wikipedia. The list of its authors can be seen in its historical and/or the page Edithistory:KeyAuth. Articles copied from Draft Namespace on Wikipedia could be seen on the Draft Namespace of Wikipedia and not main one.


    Retrieved from "https://en.everybodywiki.com/index.php?title=KeyAuth&oldid=3233643"
    License CC BY-SA 3.0
    Powered by MediaWiki
    Powered by Semantic MediaWiki