change to "OTP-App" and "one-time password"

001-Jupyter/Activate_JupyterJSC_2-factor-authentication.ipynb

@@ -34,8 +34,8 @@
     "This does not, however, lead directly to the desired entrance - but to a further barrier.\n",
     "\n",
     "The **second login step** prevents unauthorized third parties from gaining access to your account just because they might have stolen your password.\n",
-    "A quite common 2nd-factor is a time-based one-time **confirmation code** generated by a **2fa-generator app** you installs and initializes once on one of your personal devices.\n",
-    "This 2fa-generator app then provides (in our case every 30 seconds) a new confirmation code that needs to be entered on the login page.\n",
+    "A quite common 2nd-factor is a **One-Time Password (OTP)** generated by a so-called **OPT-App** you installs and initializes once on one of your personal devices.\n",
+    "This *OPT-app* then provides (in our case every 30 seconds) a new *one-time password* that needs to be entered on the login page.\n",
     "   \n",
     "<div style=\"clear:both\"></div>"
    ]
@@ -51,7 +51,7 @@
     "## Basic Principle\n",
     "These two factors for authentication combine the building blocks **knowledge** and **possession** in the login procedure.  \n",
     "- **knowledge** - the secret knowledge is the password you enter.  \n",
-    "- **possession** - With the confirmation code you show that you are in possession of a certain device (e.g. your smartphone), because only the *2fa-generator app*, installed on that device, can generate the necessary *confirmation code*.  \n",
+    "- **possession** - With the *one-time password* you show that you are in possession of a certain device (e.g. your smartphone), because only the *OTP-App*, installed on that device, can generate it.  \n",
     "\n",
     "<div style=\"clear:both\"></div>\n",
     "<div>\n",
@@ -69,16 +69,16 @@
     "</div>\n",
     "\n",
     "## Algorithm\n",
-    "The **2fa-generator app** calculates the current personal **confirmation code** completely autonomously from the outside world using a standardized and open algorithm for the generation of **Time-based One-Time Passwords (TOTP)**.  \n",
+    "The **OTP-App** can calculate personal one-time passwords completely autonomously from the outside world using a standardized and open algorithm for the generation of **Time-based One-Time Passwords (TOTP)**.  \n",
     "\n",
-    "The TOTP algorithm was published in 2011 by the [Internet Engineering Task Force (IETF)](https://www.ietf.com) as [RFC 6238](https://tools.ietf.org/html/rfc6238). The TOTP algorithm is a hash function in which a secret code is hashed together with the current time.\n",
+    "The *TOTP algorithm* was published in 2011 by the [Internet Engineering Task Force (IETF)](https://www.ietf.com) as [RFC 6238](https://tools.ietf.org/html/rfc6238). The *TOTP algorithm* is a hash function in which a secret code is hashed together with the current time.\n",
     "Behind the hash function is the HMAC-based One-time Password Algorithm according to [RFC 4226](https://tools.ietf.org/html/rfc4226) - in simple terms nothing more than a standard that forms a hash in a certain way.\n",
     "\n",
     "The calculation includes both a **\"secret initialization code\"**, that is known to both the server and the client, and the **current time**.\n",
-    "The final one-time *confirmation code* is generated from these two inputs and is valid for a certain period of time. (in our case for **30 seconds**).\n",
+    "The final *one-time password* is generated from these two inputs and is valid for a certain period of time. (in our case for **30 seconds**).\n",
     "The procedure can be implemented in such a way that slight differences in time between client and server are accepted.\n",
     "\n",
-    "Hence, any confirmation code is time-based, calculated locally, and always unique.\n",
+    "Hence, any *one-time password* is time-based, calculated locally, and always unique.\n",
     "\n",
     "<div style=\"clear:both\"></div>\n",
     "\n",
@@ -101,11 +101,11 @@
     "- (1) **request 2FA** for Jupyter-JSC,  \n",
     "  - (a) login to [Jupyter-JSC](https://jupyter-jsc.fz-juelich.de)  \n",
     "  - (b) visit https://jupyter-jsc.fz-juelich.de/2fa and request 2FA  \n",
-    "  - (c) wait for confirmation emails and click the provided activation link  \n",
+    "  - (c) wait for a *confirmation emails* and click the provided *activation link*  \n",
     "- (2) **activate 2FA** for Juypter-JSC,\n",
-    "  - (a) install a **2fa-generator app**, which supports the TOTP algorithm  \n",
-    "  - (b) communicate the **secret initialization code** to this 2fa-generator app  \n",
-    "  - (c) test a first **confirmation code** generated.  \n",
+    "  - (a) install an **OTP-App**, which supports the TOTP algorithm  \n",
+    "  - (b) communicate the **secret initialization code** to this *OTP-App*  \n",
+    "  - (c) test a first **one-time password** generated.  \n",
     "\n",
     "... and then 2FA is ready to be used next time you log in.\n",
     "\n",
@@ -117,12 +117,12 @@
     "A **confirmation email** including an **activation link** will be send to you directly.\n",
     "\n",
     "### 2. Activate 2FA\n",
-    "Please follow this activation link to instruct Jupyter-JSC for preparation of your 2FA.  \n",
+    "Please follow this *activation link* to instruct Jupyter-JSC for preparation of your 2FA.  \n",
     "You will be asked to re-login to your account to recieve a **secret initialization code** as QR-Code (and string)  \n",
-    "for a required 2fa-generator app. \n",
+    "for a required *OTP-App*. \n",
     "\n",
-    "So first, you need to install a **2fa-generator app** on one of your personal devices (if you haven´t done so already),  \n",
-    "which you plan to use in the future to generate the required **confirmation codes** for each time you log in:\n",
+    "So first, you need to install an **OTP-App** on one of your personal devices (if you haven´t done so already),  \n",
+    "which you plan to use in the future to generate the required **one-time passwords** for each time you log in:\n",
     "\n",
     "<div style=\"clear:both\"></div>\n"
    ]
@@ -137,11 +137,11 @@
     "</div>\n",
     "<div>\n",
     "   <!-- <img src=https://jupyter-jsc.fz-juelich.de/hub/static/images/2fa/jupyter-jsc_2fa_img04-1.png title=\"2-factor-authentication\" width=\"320\" style=\"float:right\"/>-->\n",
-    "   <img src=https://raw.githubusercontent.com/FZJ-JSC/jupyter-jsc-notebooks/master/001-Jupyter/images/jupyter-jsc_2fa_img04-1.png title=\"2-factor-authentication\" width=\"200\" style=\"float:right\"/>\n",
+    "   <img src=https://raw.githubusercontent.com/FZJ-JSC/jupyter-jsc-notebooks/master/001-Jupyter/images/jupyter-jsc_2fa_img04-1.png title=\"2-factor-authentication\" width=\"120\" style=\"float:right\"/>\n",
     "</div>\n",
     "\n",
-    "### a. Installation\n",
-    "There are a large number of different 2fa-generator apps available that implemented the TOTP algorithm.  \n",
+    "### a. OTP-App Installation\n",
+    "There are a large number of different *OTP-Apps* available that implemented the *TOTP algorithm*.  \n",
     "You have to install **one of them** - for example, take one of the following:  \n",
     "  - [**FreeOTP**](https://freeotp.github.io) ([iOS](https://apps.apple.com/de/app/freeotp-authenticator/id872559395), [Android](https://play.google.com/store/apps/details?id=org.fedorahosted.freeotp&hl=de))  \n",
     "  - [**Authy**](https://authy.com/download/) ([iOS](https://apps.apple.com/de/app/authy/id494168017), [Android](https://play.google.com/store/apps/details?id=com.authy.authy), [Windows](https://authy.com/download/), [macOS](https://authy.com/download/), [Linux](https://snapcraft.io/authy))  \n",
@@ -149,7 +149,7 @@
     "  - [**Google Authenticator**](https://de.wikipedia.org/wiki/Google_Authenticator) ([iOS](https://apps.apple.com/de/app/google-authenticator/id388497605), [Android](https://play.google.com/store/apps/details?id=com.google.android.apps.authenticator2) )  \n",
     "  - [**Microsoft Authenticator**](https://www.microsoft.com/en-us/account/authenticator) ([iOS](https://apps.apple.com/de/app/microsoft-authenticator/id983156458), [Android](https://play.google.com/store/apps/details?id=com.azure.authenticator), [Windows 10 Mobile](https://www.microsoft.com/en-us/p/microsoft-authenticator/9nblgggzmcj6))  \n",
     "\n",
-    "The TOTP algorithm can also be implemented in hardware as a so-called \"hardware token\" (e.g. [Protectimus Tokens](https://www.protectimus.com/tokens/))  \n",
+    "The *TOTP algorithm* can also be implemented in hardware as a so-called \"hardware token\" (e.g. [Protectimus Tokens](https://www.protectimus.com/tokens/))  \n",
     "\n",
     "<div style=\"clear:both\"></div>"
    ]
@@ -163,15 +163,15 @@
     "   <!-- <img src=images/jupyter-jsc_2fa_img05.png title=\"2-factor-authentication\" width=\"320\" style=\"float:left\"/> -->\n",
     "</div>\n",
     "\n",
-    "### b. Initialization & Validation\n",
-    "Before you can use 2FA for Jupyter-JSC a random, user-specific, unique and **secret initialization code** must be known by both Jupyter-JSC and the users 2fa-generator app.\n",
+    "### b. OTP-App Initialization & Validation\n",
+    "Before you can use 2FA for Jupyter-JSC a random, user-specific, unique and **secret initialization code** must be known by both Jupyter-JSC and the your *OTP-App*.\n",
     "This *secret initialization code* gets generated by Jupyter-JSC and is shown as a **QR-Code** (or string) on the activation page.\n",
     "\n",
     "The QR-Code provides the *secret initialization code*  with the descriptive data (1) algorithm = TOTP, (2) period of validity = 30s.\n",
-    "Please ensure you set these descriptive dates manually in your 2fa-generator app **if you prefer to use the string** instead of the QR-Code.\n",
+    "**If you prefer to use the string** instead of the QR-Code, please ensure you set these descriptive dates manually in your *OTP-App*.\n",
     "\n",
-    "Next, the 2fa-generates app provides now a **verification code** you have to enter on the activation webpage.\n",
-    "Jupyter-JSC now compares the *verification code* you provide with the one generated by Jupyter-JSC.\n",
+    "Next, the *OTP-App* provides now a **verification code** you have to enter on the activation webpage.\n",
+    "Jupyter-JSC compares the *verification code* you provide with the one generated by Jupyter-JSC.\n",
     "\n",
     "If they match, **2FA is now activated**.\n",
     "\n",
@@ -193,16 +193,25 @@
     "Congratulation! You are now ready to use 2-Factor Authentication with Jupyter-JSC.\n",
     "\n",
     "Login is now as simple as this\n",
-    "1. **Enter your password**  \n",
-    "    Each time you log in, you enter your password as usual.  \n",
-    "2. **Enter the current confirmation code**  \n",
-    "    You will then be asked for a confirmation code that you can read from your installed & initialized 2fa-generator app (e.g. on your smartphone).  \n",
+    "1. **Enter your JSC-account password**  \n",
+    "    Each time you log in, you enter your JSC-account password as usual.  \n",
+    "2. **Enter the current one-time password**  \n",
+    "    You will then be asked for a *one-time password* that you can read from your installed & initialized *OTP-App* (e.g. on your smartphone).  \n",
     "    \n",
     "**Remember me**  \n",
     "Jupyter-JSC can set a cookie to remember, that you have logged in from this device already.  \n",
-    "Just check the \"Remember me\" **checkbox** where you enter confirmation code.  \n",
-    "Jupyter-JSC **skips the evaluation** of the confirmation code in this browser on that device then for **one week**."
+    "Just check the \"Remember me\" **checkbox** where you enter *one-time password* .  \n",
+    "Jupyter-JSC **skips the request** of a *one-time password* in this browser on that device then for **one week**.  \n",
+    "  \n",
+    "  "
    ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": null,
+   "metadata": {},
+   "outputs": [],
+   "source": []
   }
  ],
  "metadata": {