Skip to content
/ tfa-backup-tools Public

πŸ—‚οΈ Back up your credentials as QR codes on paper

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

dubov94/tfa-backup-tools

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

131 Commits
docs
docs
Β 
Β 
encoder
encoder
Β 
Β 
splitter
splitter
Β 
Β 
LICENSE
LICENSE
Β 
Β 
README.md
README.md
Β 
Β 
render.yaml
render.yaml
Β 
Β 

Repository files navigation

2FA Backup Tools

Back up your credentials as QR codes on paper.

Everyone should absolutely use password managers for most of their secrets. But sometimes we just have to resort to good ol' paper to back up root passphrases or 2FA recovery codes. USB keys fail at worst times, and cloud solutions still require something the user knows. That's what the tools in this repository are for β€” to split the secrets into shares (if necessary), encode them as QR codes and print them out. All offline, obviously.

graph LR;
  subgraph split["SPLIT (into 3 shares)"]
    source['correct horse battery staple'] -- share #1 --> share_1[801f5baf...];
    source -- share #2 --> share_2[802f769e...];
    source -- share #3 --> share_3[80302d31...];
  end
  subgraph encode[" PRINT (QR codes) "]
    share_1 --> qro_1["πŸ“„"];
    share_2 --> qro_2["πŸ“„"];
    share_3 --> qro_3["πŸ“„"];
  end
  qro_1 -.- qri_1["πŸ“„"];
  qro_2 -.- qri_2["πŸ“„"];
  subgraph combine["COMBINE (2 / 3 required)"]
    qri_1 --> target['correct horse battery staple'];
    qri_2 --> target;
  end
Loading

See 'Where do you store your personal private GPG key?' for amusement and additional considerations (such as wiping the printer's memory). Remember though, there is no absolute security.

πŸ‘¨β€πŸ‘©β€πŸ‘§β€πŸ‘¦ Splitter

Uptime Robot status Mozilla HTTP Observatory Grade

Try it at https://tfa-backup-splitter.onrender.com.

  • SPLIT mode
    • Enter your secret into the text area.
    • Choose the overall number of shares (right slider) and the minimum number of shares required to restore the secret (left slider).
    • Individual shares can be copied by clicking on them.
  • COMBINE mode
    • Enter the shares into the text area, one per line.
    • Once enough shares are entered, the secret will be shown below.

The tool uses Shamir's Secret Sharing for splitting the data.

tfa-backup-splitter.gif

πŸ“ Encoder

Uptime Robot status Mozilla HTTP Observatory Grade

Try it at https://tfa-backup-encoder.onrender.com.

  • Click the + button in the bottom right corner to add a new block.
  • Enter your secret into the text area, and its label into the input field above.
    • Secrets in each block turn into QR codes on blur, and back into text on focus.
  • Once all secrets are entered, click the printer button in the top right corner.

Each output page will contain 9 blocks in a grid for easy cutting.

tfa-backup-encoder.gif

Custom deployment

You can use the button below to spin up your own instances on render.com.

Deploy to Render

About

πŸ—‚οΈ Back up your credentials as QR codes on paper

Topics

backups credentials

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Contributors 2

  •  
  •  

Languages