[Pkg-auth-maintainers] GSoC 2013 - CROTP, dynalogin, other OTP topics

[Fabian Grünbichler]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello everyone,

I wanted to give a short introduction about myself before applying for
this GSoC project but unfortunately I spent the better part of last
week in bed with a mild flu.

Anyhow, better late than never ;)

My name is Fabian Grünbichler, I was born in and am living in Vienna,
Austria. I am 24 years old and currently studying Software Engineering
and Internet Computing at the Technical University of Vienna
(https://tuwien.ac.at , https://informatik.tuwien.ac.at). I finished
my BSc studies (in Software and Information Engineering) with a thesis
on Typo3 and Security about a month ago and am in the process of
switching over to the aforementioned master's program (the last
bureaucratic hurdles should be overcome this week, fingers crossed :)).

I am fluent in English as well as German (my mother tongue), but also
know a bit of French (which I learned for six years as part of my
school curriculum). Besides my studies, I also work part-time
(12h/week) at my university's central IT department. During the summer
holidays, I will only work for two weeks at the beginning of July, the
rest of July, August and September I am free to focus on the GSoC
project (if I am chosen).

I have been an avid follower of open source software and Linux ever
since I first got hands on a computer that I could play with on my own
- - i.e. for about ten years. I started off with relatively obscure
distributions and after a short intermezzo using (back then) Mandrake
Linux moved first to Ubuntu and then to Debian, which I have used
extensively on all my computers (and those I admin for other people)
ever since. I still vividly remember spending days trying to compile
kernel modules for my D-Link wireless NIC all those years ago ;)
Besides the practical benefits which using Debian entails, I really
like the political philosophy behind the project. Therefore, I am
looking forward to maybe getting a chance to contribute back.

Technology-wise, I am familiar with most standard Linux/Debian tools,
the two main languages I regularly program in are C(99) and Java,
although I have dabbled in Python, PHP, Ruby and various C dialects as
well as writing my share of Bash scripts. My main development machine
is a Lenovo x220, but my home is filled with hardware of various ages
(probably like those of most geeks ;)), including two Raspberry Pis
(which are of course running Raspbian wheezy).

As a software engineering student and Linux enthusiast I am no
stranger to compiling software from sources (both my own projects as
well as different open source projects), using git and automated build
tools (such as make or ant). Whenever I use development branches of
software written by other people I try to create .deb packages locally
myself to make installing, upgrades and uninstalling easier - the
process involved is pretty clear to me, expect for official Debian
naming conventions and such.

I take a keen interest in (computer) security related topics, which is
part of why Debian is my distro of choice. During my bachelor's
studies I took every security related course that was available and I
try to encourage other people to use encryption wherever it makes
sense (e.g. GPG/PGP encrypted email communication, LUKS to protect
sensitive data on hard disks, etc.). I'd like to think I have a fair
understanding of common security related pitfalls and programming
errors, but I am not afraid to ask questions or get help when necessary.

For this GSoC, my preferred project is the implemention of CROTP for
oath-tool, for which I have already skimmed the RFCs linked at the
project page. I already use libpam-oath for two-factor authentication
on my laptop using the HOTP algorithm. Is there anything else apart
from looking through the oauth sources that I could do to prepare? I
would also be interested in improving the dynalogin related packages.

If there are any questions regarding my application, please let me know!

Kind regards,
Fabian Grünbichler
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Icedove - http://www.enigmail.net/

iQIcBAEBAgAGBQJRdXo6AAoJEK4xK/RwikTnDCAQAJg3Yjnz05kv0tjtiicY3cUw
aKOAvOOwsR1kKmMD8vYNdwztPKA4OM55W3PEmA4A1YBE3puBOdO3HWUlD2/PQoXf
YT3Fd0Z2f8GhRLVXuSBR0K4BFKfq6MunNgdPMhzP2r3n6JdJFUTxKYzg5WY1VvaG
lnJckDc4UGvbcSRnFpWI0cAPVXjlGANIcfDAvrT3PqDW+6nXk0V4oqG7RtffXTKx
SaPRXYNEKIa+dbozSDOOfEAf8BAtuDVcGzNstzOf8AAUhDQ2a09sUUpY2M+Rf370
SZmrLPq3ApureoYOcRAss2IFPHLyRwN12S2Oa9wUJ9kUUyqbD+t+CWphB7VjvpU2
88IAOHB35s2nTe1rmbzh5Sz351HiiIkvAvghzlq/EC/I3GY2FSoJ9yegyFoyKnJe
jSMnrECd/Y2qdRBCwg73EB2hA6I8YborCeUHr3OX0g/KmyXkK+E5iI8/zimRHWza
Nv1PTDxw8l2g5mXcublaQOg/w/Y49GdsWZgLzEyUUXjNm3Fwe+avNhNcour8Flce
DnhavIjKtqgH0zFvFiiv+2ory65fGwxErsmvVYx8G40DmFJ2bGSmAkPt4aPEDPoe
NokaJM7FFnEgIQCaB/Kk+BM4drNfjF6taHbLcZfxMD672ytyNy4Mtfp+JeAk+Eul
pfUqrMiukpWy7TiiTxI7
=M8Xm
-----END PGP SIGNATURE-----