Skip to main content

Introduction to OTP

What is OTP?

A one time password (OTP) is a password that is valid for only one login session or transaction, on a computer system or other digital device.

The most important advantage addressed by OTPs is that, in contrast to static passwords, they are not vulnerable to replay attacks

 

Soffid Implementations

Soffid provides four different OTP implementations. Users with the proper permissions could configure the OTP services on Soffid Console, they could configure one or more OTP implementations.

Once the OTP is configured, the end-users could config their OTP devices.

Email

An email with the OTP will be send to the user to use it for authentication.

&&TODO&&

SMS

Test messaging is a commns technology used for delivery OTPs. That is a secure authorisation method to send a numeric code to a mobile number.

 

Time based HMAC Token

&&TODO&&

Event based HMAC Token

&&TODO&&

https://en.wikipedia.org/wiki/One-time_password

Back to top