Warning: This app is not sanctioned by Blizzard, or tested in any manner – use at own risk! Blizzard have stated a stance of accepting that it works, but they prefer customers use the real sanctioned tools.
As the app runs on a pc, that app can be compromised as much as any other.
Wandering through the D3 and Blizzard discussions on security, I found a free Windows app which emulates the authenticators. Basically it is the same app as used on the mobile devices, except it is Windows software. And it is open source, currently v1.7.1314 and appears to be updated regularly.
- Blizzard’s Official Stance (http://eu.battle.net/wow/en/forum/topic/2569217651#5)
- Comment in D3 forums by author of the application (http://us.battle.net/d3/en/forum/topic/5150113315#2)
- Promo for it in the forums (http://us.battle.net/d3/en/forum/topic/5730074075)
Wow, a pretty impressive give away of a useful function!
WinAuth uses the same algorithm as the Mobile Authenticator for Android and iPhone, and so generates the same codes when using the same serial number and secret key. One of the initial reasons to write it was to remove the dependency on having the phone available, but still use the same codes.
Whilst you cannot directly read the Mobile Authenticator’s private keys from an iPhone or non-rooted Android, you can now use the new Restore feature to copy your authenticator over to WinAuth.
Impressive, and now even less excuse not to have an additional line of account security for Blizzard games.