Attomus Signet

iPhone / Utilitaires

Attomus Signet is a TOTP and HOTP authenticator built on a single principle: your
authentication secrets belong to you, on your device, protected by your device's hardware.

Most authenticator apps ask you to trust a server. Google Authenticator syncs to Google
accounts. Microsoft Authenticator connects to Microsoft infrastructure. Authy requires
account registration and syncs to Twilio servers. Every one of them puts a third party
somewhere in your trust chain.

Signet has none.

No account required. The app works from first launch with no registration, no email
address, and no cloud setup.

No network required. TOTP and HOTP codes are generated entirely on-device. The app makes
zero network requests in normal operation.

No call-homes. Zero telemetry. Zero analytics. Zero crash reporting that leaves your device.

Hardware-backed secret protection. Your secrets are wrapped by Secure Enclave keys where
available. The app shows you exactly which level of hardware protection each account has.

Biometric-gated access. Your secrets are only accessible after Face ID, Touch ID, or device
credential authentication. Changing your biometrics permanently destroys the wrapping
keys — there is no recovery path, by design.

Encrypted backup. Export your accounts as an Argon2id + AES-256-GCM encrypted file.
You set the passphrase. Nobody else holds a copy.

Open cryptography. RFC 6238 (TOTP) and RFC 4226 (HOTP) implemented using Apple's standard
cryptographic APIs. No proprietary algorithms. No third-party cryptographic libraries.

Compatible with GitHub, AWS, Cloudflare, Microsoft, Google, and any service using the
standard otpauth:// QR code format.