The mobile app Smart ID Mobile App supports time-based and event-based one-time passwords (OTP). Smart ID Mobile App works in offline mode and offers extra security compared to other mobile apps for two-factor authentication, since the user must authenticate in the app with a PIN code or biometric validation with fingerprint or face recognition, before receiving the OTP.
About one-time passwords (OTP)
A one-time password (OTP) is a temporary and unique passcode, that is generated by an algorithm to authenticate users to digital resources. There are different types of one-time passwords (OTP), as defined by the Initiative for Open Authentication (OATH):
- Time-based OTP (TOTP): A TOTP is renewed after a fix amount of time, for example 30 seconds. The algorithm that generates each password uses the current time of day as one of its factors, ensuring that each password is unique.
- Event-based OTP (HOTP): An HOTP is valid per authentication. After authentication a new OTP is generated.
One-time passwords (OTP) in Nexus' Digital access platform
Smart ID Digital access supports OTP-token authentication for the OATH standards for HOTP, TOTP and OCRA as well as self-registration for OATH-compliant mobile applications. For information on other supported OATH-based authentication methods in Digital access, see Authentication methods in Digital Access.
Security:
- Time- or event-based one-time passwords.
- Protection with PIN or biometric validation.
- Supports strong algorithms, such as SHA512 and SHA256.
Convenience:
No need for extra hardware tokens
- Works offline