The Oasis Foundation is excited to introduce 0x2fa, the newest grant recipient building on Sapphire. 0x2fa is designed to provide an innovative upgrade to two-factor authentication systems by leveraging the unique security and confidentiality of Oasis technology. Oasis is proud to support the 0x2fa team in their efforts to enhance user security, privacy, and control with a new alternative for digital authentication.

What is 0x2fa?

The proof of concept for this solution was developed during the ETHDam 2024 hackathon and later awarded a grant from the Oasis Foundation. During the ETHDam hackathon event, 0x2fa presented a new vision for two-factor authentication (2FA) that focuses on generating and managing time-based one-time passcodes (TOTPs) on the Oasis Network.

0x2fa leverages Sapphire’s confidential computing capabilities, enhancing security and privacy relative to traditional TOTP implementations. By securely storing secret keys onchain, 0x2fa also eliminates single points of failure and reduces the need to trust common solutions like Google Authenticator or Authy. 

Note: 0x2fa has not been fully audited and is under development. The dApp is currently in an open beta and ready to be tested by the community.

How will 0x2fa improve the Oasis ecosystem?

Traditional 2FA relies on systems where users typically authenticate their identities with a username and password, which can be supplemented by SMS codes or authenticator apps. In this scenario, the user has to trust the authentication provider. With centralized data storage and communication channels, this setup is also susceptible to phishing and SIM-swapping attacks.
0x2fa provides a number of advantages over traditional methods. 

• First, by storing secrets onchain within a smart contract running inside a TEE, there’s no single party that can be compromised. 
• Second, users always retain control of their secrets. Third, the immutable nature of blockchain technology prevents unauthorized modifications or tampering with stored data. 
• Third, since secrets reside onchain, users don’t need manual backups, reducing their risk of losing access.

0x2fa addresses fundamental digital security issues that affect every Oasis ecosystem user. By empowering individuals to manage their own 2FA secrets, the project upholds Web3 values and supports a culture of autonomy and privacy. 

What’s next for 0x2fa?

Robust authentication solutions like 0x2fa will be increasingly crucial for safeguarding sensitive information as digital threats continue to evolve. Building this project on Sapphire not only strengthens the Oasis Network but it also contributes to a broader movement toward decentralized security solutions. The 0x2fa team plans to pursue many more external integrations as they further develop the application to garner further exposure and usage. 

Learn more about grants for builders using Oasis here.