Proposal for Google Summer of Code 2013 by Rodrigo Aguilera

I also builded, maintain and administer the servers for various non profit Drupal websites. For example [http://literaturanova.com/] (a literature social network) [http://bicicritica.ourproject.org/] (the bike critical mass in Madrid) and other brochure sites for friends and family.

I'm quite familiar with the main subjects of the project, authentication, cryptography and security from what I learned on the main and optional courses that a computer science student have to pass to get his degree but I also deepened on this with a 4 month course on free software server architecture which covers many of the subjects explained in the book UNIX and Linux System Administration Handbook plus many subjects about licensing, best practices and how to contribute with an open source project. This last course encouraged me to become a cacert assurer.

As for the programming languages and technologies I feel comfortable with PHP and Java but I'm not scared with C or C++ since I programed micro-controllers and some learning projects with this languages.

I'm fluent in English and Spanish.

I've added the ability to generate identity files on the fly for ldap valid users in simpleid. Pull request

I really believe in free software and I advocate for it whenever I can and this a chance for working on the project that I admire the most and the community will get some advantages so I think is a win-win situation.

I would like to lean more on the simpleid part at first to get authentication against the ldap without intervention of the admin. Also create a updated simpleid package for debian solving some pending bugs. With this make a proposal to include simpleid as SSO in the debian infrastructure, just against the ldap for the moment.

After that dig into the otp protocols specially CROTP to implement them into oathtool so the dyanlogin server can use them. With this working there should be an alternative method for authenticating with otp.

This also can be deployed in the debian infrastructure to allow otp authentication, supposedly using openid.

A way to generate passwords for otp must be considered so follow the steps of the fedora project with yubikeys could be an option.

If there's enough time integrations between parts can be implemented like making ?FusionForge (aka gforge) on alioth.debian.org use this SSO system to make life easier for developers.