All, During CCC21 hackathon, I explored the feasibility of a 2FA framework and a TOTP (time-based OTP) plugin that can be used with Google Authenticator, MS Authenticator, Authy etc.
I've used ideas of TOTP based 2FA PoC to put together a design doc for discussion: https://cwiki.apache.org/confluence/display/CLOUDSTACK/2FA+Framework+and+Plugins Kindly review and share your feedback. Thanks. Regards.
