Skip Headers
Oracle® Fusion Middleware Developer's Guide for Oracle Adaptive Access Manager
Release 11g (11.1.1)

Part Number E15480-02
Go to Documentation Home
Go to Book List
Book List
Go to Table of Contents
Go to Index
Go to Master Index
Master Index
Go to Feedback page
Contact Us

Go to previous page
Go to next page
View PDF

7 Virtual Authentication Device Properties

OAAM Server provides end users a secure method to enter sensitive credentials online. OAAM Server is comprised of multiple secure interfaces. There are many security technologies employed in the OAAM Server user interfaces.

Each OAAM Server interface is a virtual authentication device (VAD). Each VAD has its own unique set of security features that make it much more than a mere image on a web page.

Details on the virtual authentication device properties are provided in this chapter for your reference.

7.1 Property Files

Virtual authentication devices uses the following files:


Many of the properties related to the virtual authentication devices are in resource bundles so that they are capable of being localized. If the default value is in a "resource" file, then the override value should be placed in the client override file for resource bundle values (

7.2 Authentication Devices and Background Images

Virtual authentication devices are provided with Oracle Adaptive Access Manager as samples to use if you choose to. These samples are provided in English only.

A set of sample background images are also shipped with Oracle Adaptive Access Manager. For the images to be displayed, set the following properties:

If any of the images are to be edited, make sure not to increase the physical dimensions or change the aspect ratio of the sample images because distortions will occur.

7.3 Display and Security Feature Properties

Virtual authentication devices are provided with Oracle Adaptive Access Manager as samples to use if you choose to. These samples are provided in English only. Source art and information in this chapter are provided to allow you to develop your own custom virtual authentication device frames, keys, personalization images and phrases.

Alteration of these samples is considered custom development.

The following sections outline the visual elements that are within the virtual authentication device visual display for each device and the unique security features of each authentication device.

Each virtual authentication device has its own unique security features. Some of these features can be enabled and disabled by editing the configuration properties in the

For visual display, important terms are:

7.3.1 TextPad

TextPad is a personalized device for entering passwords or PIN using a regular keyboard. Like other virtual authentication devices, the TextPad helps in solving phishing problems. An example TextPad is shown in Figure 7-1.

Figure 7-1 TextPad

This is an illustration of a TextPad TextPad Visual Elements

This section provides information on the visual elements of TextPad.

Phrase (Caption)

bharosa.authentipad.textpad.caption.personalize = true
bharosa.authentipad.textpad.caption.x = 14
bharosa.authentipad.textpad.caption.y = 203
bharosa.authentipad.textpad.caption.frame = false
bharosa.authentipad.textpad.caption.wrap = false
bharosa.authentipad.textpad.caption.width = 130
bharosa.authentipad.textpad.caption.height = 16 = Arial
bharosa.authentipad.textpad.caption.font.color = 000000
bharosa.authentipad.textpad.caption.font.type= 0
bharosa.authentipad.textpad.caption.font.size = 9


bharosa.authentipad.textpad.timestamp.x = 25
bharosa.authentipad.textpad.timestamp.y = 165
bharosa.authentipad.textpad.timestamp.width = 132
bharosa.authentipad.textpad.timestamp.height = 16
bharosa.authentipad.textpad.timestamp.frame = false
bharosa.authentipad.textpad.timestamp.wrap = false = Arial
bharosa.authentipad.textpad.timestamp.font.color = ffffff
bharosa.authentipad.textpad.timestamp.font.type= 0
bharosa.authentipad.textpad.timestamp.font.size = 9

Enter Key Hotspot

bharosa.authentipad.textpad.enterkey.enable=true TextPad Authenticator Properties

Table 7-1 lists the TextPad Authenticator Properties

Table 7-1 TextPad Authenticator Properties

Feature Property

Default BG (Can be application specific)

bharosa.uio.<appId>.DeviceTextPad.default.image = textpad_bg/UIO_BG.jpg

Password Frame File (Can be application specific)

bharosa.uio.<appId>.password.DeviceTextPad.frame =

Challenge Frame File (Can be application specific)

bharosa.uio.<appId>.<challengeType>.DeviceTextPad.frame =

Note: Challenge type can be any configured challenge type (ChallengeQuestion, ChallengeEmail, and others)

Registration Frame File (Can be application specific)

bharosa.uio.<appId>.register.DeviceTextPad.frame = textpad_bg/TP_O_preview.png

User Preferences Frame File (Can be application specific)

bharosa.uio.<appId>.userpreferences.DeviceTextPad.frame = textpad_bg/TP_O_preview.png

7.3.2 QuestionPad

QuestionPad is a personalized device for entering answers to challenge questions using a regular keyboard. The QuestionPad is capable of incorporating the challenge question into the Question image. Like other Adaptive Strong Authentication devices, QuestionPad also helps in solving the phishing problem. An example QuestionPad is shown in Figure 7-2.

Figure 7-2 QuestionPad

This is an illustration of a QuestionPad QuestionPad Visual Elements

This section provides information on the visual elements of QuestionPad.


In and above, the QuestionPad is a single line field.

Phrase (Caption)

bharosa.authentipad.questionpad.caption.personalize = true
bharosa.authentipad.questionpad.caption.x = 14
bharosa.authentipad.questionpad.caption.y = 203
bharosa.authentipad.questionpad.caption.frame = false
bharosa.authentipad.questionpad.caption.wrap = false
bharosa.authentipad.questionpad.caption.width = 130
bharosa.authentipad.questionpad.caption.height = 16 = Arial
bharosa.authentipad.questionpad.caption.font.color = 000000
bharosa.authentipad.questionpad.caption.font.type= 0
bharosa.authentipad.questionpad.caption.font.size = 9


bharosa.authentipad.questionpad.timestamp.x = 25
bharosa.authentipad.questionpad.timestamp.y = 165
bharosa.authentipad.questionpad.timestamp.width = 132
bharosa.authentipad.questionpad.timestamp.height = 16
bharosa.authentipad.questionpad.timestamp.frame = false
bharosa.authentipad.questionpad.timestamp.wrap = false = Arial
bharosa.authentipad.questionpad.timestamp.font.color = ffffff
bharosa.authentipad.questionpad.timestamp.font.type= 0
bharosa.authentipad.questionpad.timestamp.font.size = 9

Question Text

bharosa.authentipad.questionpad.question.x = 9
bharosa.authentipad.questionpad.question.y = 32
bharosa.authentipad.questionpad.question.width = 132
bharosa.authentipad.questionpad.question.height = 62
bharosa.authentipad.questionpad.question.frame = false
bharosa.authentipad.questionpad.question.wrap = true = Arial
bharosa.authentipad.questionpad.question.font.color = 000000
bharosa.authentipad.questionpad.question.font.type= 0
bharosa.authentipad.questionpad.question.font.size = 9

Enter Key Hotspot


Visible Text Input or Password (Non-Visible) Input Setting

The following property in client_resource_<locale>.properties determines whether the QuestionPad is set for visible text input or password (non-visible) input.


Valid values are text and password. QuestionPad Authenticator Properties

Table 7-2 lists the QuestionPad Authenticator Properties

Table 7-2 QuestionPad Authenticator Properties

Feature Property

Default BG (Can be application specific)

bharosa.uio.<appId>.DeviceQuestionPad.default.image = textpad_bg/UIO_BG.jpg

Challenge Frame File (Can be application specific)

bharosa.uio.<appId>.<challengeType>.DeviceQuestionPad.frame =

Note: Challenge type can be any configured challenge type (ChallengeQuestion, ChallengeEmail, and others)

7.3.3 Keypad

KeyPad is a personalized graphics keyboard, which can be used to enter alphanumeric and special character that can be enter using a traditional keyboard. KeyPad is ideal for entering passwords and other sensitive data. For example, credit card numbers can be entered. An example KeyPad is shown in Figure 7-3.

Figure 7-3 KeyPad

This is an illustration of a KeyPad KeyPad Visual Elements

This section provides information on the visual elements of KeyPad.

Phrase (Caption)

bharosa.authentipad.keypad.caption.personalize = true
bharosa.authentipad.keypad.caption.x = 240
bharosa.authentipad.keypad.caption.y = 206
bharosa.authentipad.keypad.caption.frame = false
bharosa.authentipad.keypad.caption.wrap = false
bharosa.authentipad.keypad.caption.width = 130
bharosa.authentipad.keypad.caption.height = 16 = Arial
bharosa.authentipad.keypad.caption.font.color = 000000
bharosa.authentipad.keypad.caption.font.type= 0
bharosa.authentipad.keypad.caption.font.size = 9


bharosa.authentipad.keypad.timestamp.x = 110
bharosa.authentipad.keypad.timestamp.y = 202
bharosa.authentipad.keypad.timestamp.width = 132
bharosa.authentipad.keypad.timestamp.height = 16
bharosa.authentipad.keypad.timestamp.frame = false
bharosa.authentipad.keypad.timestamp.wrap = false = Arial
bharosa.authentipad.keypad.timestamp.font.color = ffffff
bharosa.authentipad.keypad.timestamp.font.type= 0
bharosa.authentipad.keypad.timestamp.font.size = 9

Enter Key Hotspot


Backspace Key Hotspot


Caps States

bharosa.authentipad.keypad.capslock.capsshiftimg=kp_v2_first_caps.jpg KeyPad Authenticator Properties

Table 7-3 lists the KeyPad Authenticator Properties

Table 7-3 KeyPad Authenticator Properties

Feature Property

Default BG (Can be application specific)

bharosa.uio.<appId>.DeviceKeyPadFull.default.image = keypad_bg/UIO_BG.jpg

Password Frame File (Can be application specific)

bharosa.uio.<appId>.password.DeviceKeyPadFull.frame =

Challenge Frame File (Can be application specific)

bharosa.uio.<appId>.<challengeType>.DeviceKeyPadFull.frame =

Note: Challenge type can be any configured challenge type (ChallengeQuestion, ChallengeEmail, and others)

Registration Frame File (Can be application specific)

bharosa.uio.<appId>.register.DeviceKeyPadFull.frame = alphapad_bg/kp_O_preview.png

User Preferences Frame File (Can be application specific)

bharosa.uio.<appId>.userpreferences.DeviceKeyPadFull.frame = alphapad_bg/kp_O_preview.png

7.3.4 PinPad

PinPad is a lightweight authentication device for entering a numeric PIN. An example PinPad is shown in Figure 7-4.

Figure 7-4 PinPad

This is an illustration of a PinPad PinPad Visual Elements

This section provides information on the visual elements of PinPad.

Phrase (Caption)

bharosa.authentipad.pinpad.caption.personalize = true
bharosa.authentipad.pinpad.caption.x = 5
bharosa.authentipad.pinpad.caption.y = 206
bharosa.authentipad.pinpad.caption.frame = false
bharosa.authentipad.pinpad.caption.wrap = false
bharosa.authentipad.pinpad.caption.width = 130
bharosa.authentipad.pinpad.caption.height = 16 = Arial
bharosa.authentipad.pinpad.caption.font.color = 000000
bharosa.authentipad.pinpad.caption.font.type= 0
bharosa.authentipad.pinpad.caption.font.size = 9


bharosa.authentipad.pinpad.timestamp.x = 15
bharosa.authentipad.pinpad.timestamp.y = 165
bharosa.authentipad.pinpad.timestamp.width = 132
bharosa.authentipad.pinpad.timestamp.height = 16
bharosa.authentipad.pinpad.timestamp.frame = false
bharosa.authentipad.pinpad.timestamp.wrap = false = Arial
bharosa.authentipad.pinpad.timestamp.font.color = ffffff
bharosa.authentipad.pinpad.timestamp.font.type= 0
bharosa.authentipad.pinpad.timestamp.font.size = 9

Enter Key Hotspot


Backspace Key Hotspot

bharosa.authentipad.pinpad.backspace.enable=true PinPad Authenticator Properties

Table 7-4 lists the PinPad Authenticator Properties

Table 7-4 PinPad Authenticator Properties

Feature Property

Default BG (Can be application specific)

bharosa.uio.default.DevicePinPad.default.image = pinpad_bg/UIO_BG.jpg

Password Frame File (Can be application specific)

bharosa.uio.<appId>.password.DevicePinPad.frame =

Challenge Frame File (Can be application specific)

bharosa.uio.<appId>.<challengeType>.DevicePinPad.frame =

Note: Challenge type can be any configured challenge type (ChallengeQuestion, ChallengeEmail, and others)

Registration Frame File (Can be application specific)

bharosa.uio.<appId>.register.DevicePinPad.frame = pinpad_bg/PP_v02_frame_preview.png

User Preferences Frame File (Can be application specific)

bharosa.uio.<appId>.userpreferences.DevicePinPad.frame = pinpad_bg/PP_v02_frame_preview.png

7.4 Accessibility

Users who access using assistive techniques will need to use the accessible versions of the virtual authentication devices. Accessible versions of the TextPad, QuestionPad, KeyPad and PinPad are not enabled by default. If accessible versions are needed in a deployment, they can be enabled via properties.

The accessible versions of the pads contain tabbing, directions and ALT text necessary for navigation via screen reader and other assistive technologies.

To enable these versions, set the is ADA compliant flag to true.

For native integration the property to control the pads is


For UIO, the property to control the pads is


7.5 KeysSets

A KeySet is the configuration that defines what character keys are present on the virtual authentication device. KeySets are used by the KeyPad and PinPad virtual authentication devices.

7.5.1 User Defined Enums Overview

KeySets are defined by a series user defined enums.

User-defined enums are a collection of properties that represent a list of items. Each element in the list may contain several different attributes. The definition of a user-defined enum begins with a property ending in the keyword ".enum" and has a value describing the use of the user-defined enum. Each element definition then starts with the same property name as the enum, and adds on an element name and has a value of a unique integer as an ID. The attributes of the element follow the same pattern, beginning with the property name of the element, followed by the attribute name, with the appropriate value for that attribute.

The following is an example of an enum defining credentials displayed on the login screen of an OAAM Server implementation:

bharosa.uio.default.credentials.enum = Enum for Login Credentials
bharosa.uio.default.credentials.enum.companyid.description=Company ID

This set of properties defines one user-defined enum that contains two elements, each of which with five attributes. The "name" and "description" attributes are required to define any user-defined enum, other attributes are defined and used as needed by each individual use of a user-defined enum.

7.5.2 KeySet Definition

The first enum defines the rows of the KeySet and points to an another enum describing the keys present in that row.

For example, the following enum defines the rows of keys in a PinPad:

bharosa.authentipad.pinpad.default.keyset.enum=Default PinPad Keyset Enum
bharosa.authentipad.pinpad.default.keyset.enum.row1=0 PinPad Keyset Row 1
bharosa.authentipad.pinpad.default.keyset.enum.row1.description=Default PinPad Keyset Row 1
bharosa.authentipad.pinpad.default.keyset.enum.row2=1 PinPad Keyset Row 2
bharosa.authentipad.pinpad.default.keyset.enum.row2.description=Default PinPad Keyset Row 2
bharosa.authentipad.pinpad.default.keyset.enum.row3=2 PinPad Keyset Row 3
bharosa.authentipad.pinpad.default.keyset.enum.row3.description=Default PinPad Keyset Row 3
bharosa.authentipad.pinpad.default.keyset.enum.row4=3 PinPad Keyset Row 4
bharosa.authentipad.pinpad.default.keyset.enum.row4.description=Default PinPad Keyset Row 4

Each row is made of the following properties:

Table 7-5 Properties of Rows

Property Description


Name of the row.


Description of the row.


Enum identifier of the enum that defines the keys in the row.


The order the key resides in the row of keys.

In this case, the row1 enum is defined as follows:

bharosa.authentipad.pinpad.default.keyset.row1.enum=Default Pinpad Keyset Row 1

Each key is made of the following properties:

Table 7-6 Properties of Each Key

Property Description


Name of the key.


Description of the key.


The character value the key represents when clicked.


The character value the key represents when in caps mode.


The image file name that will be used to display the visual representation of the key.


The order the key resides in the row of keys.

7.6 Localization

This section contains information on customizing the application/virtual devices to contain locale-specific properties.

7.6.1 Enabling Localization

To enable locale-specific customizations, you must perform the following steps:

  1. Create a client resource override file, client_resource_<locale>.properties file. <locale> is the locale for which you wish to use the custom values (en, es, and others)

  2. Using the Properties Editor, set the value of bharosa.config.resourcebundle.clientoverride to client_resource_<locale>.properties.

    The default value of this property is client_resource.

The client_resource_<locale>.properties file should contain:

  • Client-configured properties that are configurable for each locale being supported.

  • Messaging and page content configuration for the UIO system. For example, page titles, links at the bottom of the pages, page messages, error message, and confirmation messages.

7.6.2 Configuring Words Used in the Authenticator Caption

During initial registration a user is assigned a word:word pair for his KeyPad that is generated randomly from word list properties. In English the word:word pairs are in the form, adjective:noun.

In the English version of Oracle Adaptive Access Manager, there are several hundred values in the word lists. In all other languages it is necessary for the installer to enhance the brief word lists provided.

To add words to the word lists, in, modify the bharosa.user.caption.word1.list and bharosa.user.caption.word2.list properties.

7.6.3 Localizing the KeyPad

Localization of the KeyPad may have issues since not all languages have the same number of characters. Portuguese for example has special characters not found in English. The key layout may be a bit different when these character keys are added. When adding keys to the layout it is vital that there is still enough free space around the keys to allow the "jitter" to function. General best practice is a space at least as large as a single key all the way around the bank of keys when they are positioned in the center of the jitter area. The source art contains notes with the pixel sizes for this area.

7.6.4 Configuring Enter on the Authenticator Forgot Password Page

To configure Enter to be in a local-specific language, modify the property, property.

7.6.5 Configuring Tooltip for TextPad's Enter Button

To configure Enter in a locale-specific language for TextPad's tooltip, modify the property, bharosa.authentipad.textpad.enterkey.label=enter property.