Flake based message
You can send a message through Newauth's flake. Just click on the flake below.
If you prefer email, you can send an email to
newauth@newauth.io
So far, we have used persisted proof for authentication. All existing methods [password, private key, single use token, biometrics] utilize it.
The persisted proof suffers from a flaw... It exists.
Since the proof exists, it can be stolen.
Newauth solves this problem by doing away with the persisted proof.
What is Newauth?
Newauth is a new way to Login. No passwords, OTPs or biometrics. Newauth relies on your visual memory to identify you. You just click on secret location on images.
What can I use Newauth for?
Organize, store passwords and other secrets in the Newauth Vault.
Create random, strong, unbreakable passwords for where they are necessary.
Forget all your passwords.
Never again type websites, ids and passwords. Just copy and paste them.
Seamless login to sites supporting login via Newauth.
Network with friends or strangers in a unique way. Peer to peer chats.
More coming...
Individual benefits +
Be part of a growing community of users
Use Newauth as your identity provider, eliminate reset password requests from your users.
Save your users from periodic password changes.
Simplify your login flow, remove captcha. Newauth is bot-resistant.
Advertise your brand on Newauth, add your brand image to Newauth's authentication images.
Manage your brand communication through a dedicated brand page.
Flake based transactions... Coming soon.
Is Newauth a new social network?
Newauth users can remain anonymous or be social as needed. The system allows users to change their privacy settings by click of a button. This is possible because the ID of a Newauth user changes every time they log in.
Newauth users can chat and share information with one another and the whole world, just like any social network. But, Newauth is built with anonymity as its default setting. User can toggle between 4 levels of visibility.
Is Newauth really secure?
A 12 character text based strong password, like EvR9L@i!#76y, has an entropy of 78. A Newauth flake generated by clicking on 3 images has an entropy of 90.90. In case of break-in attempts, the entropy starts increasing and goes as high as 141. This elasticity of entropy combined with the ease of use is the USP of Newauth.
You can experience the Newauth method with a test account. Type tester1 in the user name box and hit Enter. That account has weathered close to a million attempts to hack it.
You can take #newauthchallenge also if you like.
What information can I store in Newauth Vault?
You can store any file in the Newauth Vault. The Vault has two areas. Website credentials (for your current passwords) and Files.
Is my Vault data visible to Newauth or its staff?
The Newauth Vault data is encrypted with AES 256 bit encryption on the user's computer and stored in Newauth servers in encrypted form. After authentication, it is sent to the user's computer, where it is decrypted. Only the person who placed the data in the Vault can see it.
Can I access my vault from any browser?
Newauth vault can be accessed from any browser on any device. The most convenient method to access your vault contents in a browser is the Web Extension called "No password - password manager". It is currently available for Firefox and Chrome Browsers. It takes a few more clicks to access your vault content through the website compared to the Web Extension.
What is time fencing?
Think of a test paper. What if a teacher could give the tests to the students any time with a guarantee that the paper can not be seen until it is test time? Time fencing refers to the ability to share secrets bound by a time constraint.
Can I add Newauth to my website's login options?
Of course. Depending upon your exact needs, you may need to create a Brand account for it.
Follow the instructions on our Gitlab Repo
What does this much entropy cost?
Individual accounts are free forever.
Brand accounts start at $79 per year per user.
Newauth is a new way to Login. No passwords, OTPs or biometrics. Newauth relies on your visual memory to identify you. You just click on secret location on images. Newauth means authentication with new information. Newauth does not rely on old information. It starts easy and becomes difficult in case someone attempts to break-in.
No Passwords, private keys, biometrics or devices
Newauth does not use information that exists before you login. Passwords, private keys, 2D bar codes, biometrics etc exist before you can use those.
In Newauth, you click on images, which generates a new, fresh password, every time. A Newauth password is called a flake. Since each flake is unique, it is also used as an ID.
Simple
Newauth is very simple and easy to use compared to text based passwords
The user only remembers the secret locations on a set of images. Clicking on images is much easier than remembering and typing long text passwords, especially when they are not natural words. Newauth is the only password that you could produce while walking or running.
Secure
Newauth authentication is orders of magnitude stronger than traditional text based passwords
A 12 character text based password (e.g. EvR9L@i!#76y) which includes small, capital letters, numbers and special characters, has an entropy of 78. A Newauth password generated by clicking on 3 images has an entropy of 90.90.
It can be mathematically proven that there is a 36 percent chance that a hack against a Newauth account may NEVER succeed. With static passwords it is just a matter of time before they can be broken.
You can experience the Newauth method with a test account. Type tester1 in the user name box and hit Enter. That account has weathered more than 2.5 million attempts to hack it.
Adaptive
Login made easier or more difficult, on the fly
A password in Newauth mimics a point in multidimensional space. You select this point by clicking on images that come in a set. The size of the set determines the number of dimensions of this space and thus the difficulty of the password. Newauth controls the set and its size.
Interestingly, Newauth provides the same functionality as two factor authentication without the inconvenience of checking and entering multiple codes from different devices.
Consecutive failed attempts should make login more difficult. Newauth does that. The dynamic nature of passwords makes it possible for Newauth to change the difficulty of authentication.
Click for more...
Newauth enables proof of presence
The output of every Newauth authentication is a token called flake. Since the flake did not exist before hand and it could be created only by one user, a flake is a proof of presence of that user.