What is one time password?

What is one-time password?

When you start finding out more about security authentication, you will most likely come across OTP, the acronym for one time password. What is OTP password? One time password means that the password is valid only for one interaction, session, or transaction. OTP algorithm is an improvement compared to standard static passwords, as it eliminates any chance of attacks based on simple knowing of the password. OTPs are difficult or even impossible to memorize, and they require additional infrastructure (tokens).

What Authentication Algorithms Do We Use?

Our solution supports all standard authentication algorithms that have been tested in the field of multi-factor authentication (HOTP, TOTP, OCRA), are widely used, and have secure protection ­– Initiative for Open Authentication (OATH). Their openness and practical application over the years have proven that the OTP technology is currently one of the most effective methods for ensuring authentication security.

One time password generator

How Can I Integrate It with My Resource?

Preliminary Steps:

  1. Registering in our service.
  2. Activating the API in one click.
  3. Enrolling tokens and assigning tokens to users.
  4. Integrating the service through existing libraries for major programming languages and a well-documented API.
Authentication algorithm

Authentication Process:

  1. During authorization, besides a user’s login and password, a user will be asked for a one-time password that he/she will have to enter in the form after generating it with one of our tokens.
  2. The one-time password is sent through the API to Protectimus.
  3. In real-time mode, the ОТР and the user are verified, and your application instantly receives a positive or a negative response.
  4. Your application responds to the authentication attempt based on the response received.
Knowledge base

Today, when computer and Internet users are looking for the best way to ensure their data is secure and to prevent their information from being hacked, one time password authentication is the first thing that comes to mind. So, what is OTP password? The ‘OTP’ abbreviation itself stands for ‘one time password’ - an instrument used for implementing stronger authentication algorithms. With the two factor authentication service from Protectimus and a specifically designed token, OTP security enforces your data protection.

Users are naturally asked to create a password as a part of the authentication algorithm on every web-site, where you can keep any data. Many people think that with their unique password all the important information is unconditionally secure. However, users’ passwords unicity is highly questionable. Most passwords are logical: you use dates, numbers, last names to protect your information. Such passwords can be easily overseen, stolen or even guessed. On the contrary, users can utilise one time passwords to keep most important data safe from leakage, as OTP password is only valid once.

Finally, you are on a way to provide your project with the maximum protection by integrating OTP authentication. The only question is how to get one time password. This simple, but efficient tool, operates together with a specially designed companion - an OTP password generator, which is called a ‘token’ and can be either specially designed, or even represented by a gadget that you own. So here are the 3 steps to take to run OTP algorithm: sign up to Protectimus, choose the most suitable token and receive unique OTP whenever you need to be authenticated.

A token, or a one time password generator, is a device or a software program that uses an OTP generation algorithm to generate one time passwords when requested by the user. Normally tokens are a convenient OTP solution as they are stand-alone devices that don't need access to any network. Hardware tokens used for one time password authentication, can use various algorithms, e.g. time based one time password (TOTP) and others.

Sources to get an OTP for one time password authentication are diverse. However, they are invented to perform one major task - maintain your data protection. Here, diversity implies that the tools you use to get your one time password are different: hardware or software, for basic or advanced tasks, requiring Internet connection or for offline use. Generally, you do not need to be online to get your OTP, if you have a token. At Protectimus, all hardware and software tokens are designed for offline password generation: ONE, SLIM, ULTRA and SMART.

What Is One Time Password?

Why Use OTP Technology?

How To Get OTP?

One Time Password Token

Can I Get OTP Offline?