how OTP token works?

- L
- lionelgreenstreet
  
  Contact options for registered users
posted
11 years ago

Thu, Mar 28, 2013 1:09 PM

Hi, i don't understand how OTP token works. Form wikipedia, i read that an OTP password could be basend on:

time based approach

new password derived from previous one

For example if i consider VASCO digipass, it is based on an hardware token able to create one time passwords: i don't think it is based on time based approach because token and server should be syncronized. If it is based on a new password derived from previous one, if i accidentaly press token key button multiple times, how server can recognize the next password as a righ t password? Thanks

Loading thread data ...

- J
- Jasen Betts
  
  Contact options for registered users
Vote on answer
posted
11 years ago

Thu, Mar 28, 2013 7:08 PM

It knows how to generate passwords too. and hs a faster processor it can trivially check the next 100 passwords to see if you've skipped some

For time based tokens the server can estimate clock skew by which of the passwords you use. (last minute's password, this minute's password, next minute's password)

In both cases the server will accept multiple different passwords and use your choice of password to update its knowledge of the state os your OTP device.

--
?? 100% natural 

--- news://freenews.netfront.net/ - complaints: news@netfront.net ---

ElectronDepot website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.