one-time password


Also found in: Dictionary, Wikipedia.

One-Time Password

(security)
(OTP) A security system that requires a new password every time a user authenticates themselves, thus protecting against an intruder replaying an intercepted password. OTP generates passwords using either the MD4 or MD5 hashing algorithms.

The equivalent term "S/Key", developed by Bellcore, is a trademark of Telcordia Technologies, so the name OTP is used increasingly.

See RFC 1760 - "The S/KEY One-Time Password System" and RFC 1938 - "A One-Time Password System".

http://cs.umd.edu/~harry/jotp/.

one-time password

A password given to the user for one login session only and that must be used within a certain amount of time. One-time passwords are sent from tech support to people who need help registering or logging into a website. As soon as the one-time password (OTP) enables access to the site, it is no longer valid, and users must create a permanent password. OTPs are also created for physical authentication devices (see authentication token), and they are sometimes used as a second means of authentication if a person logs in from a new computer (see two-factor authentication).
References in periodicals archive ?
All one-time passwords generation and delivery methods are available: TOTP and OCRA hardware tokens, software token apps for Android and iOS, SMS, and email.
Jibun Bank had earlier installed VASCO's one-time password (OTP) and transaction signing security features.
The traditional one-time password authentication protocol has a shortcoming that the time of authentication is limited.
OTCBB: CLDS) said it has filed for US patent protection for system and methods for one-time password generation on a mobile computing device.
However, Graham Cluley, Senior Technology Consultant at Sophos warns that Facebook's one-time password feature could in fact result in further security concerns for users.
Pledge, the client used to generate one-time passwords on the user's mobile phone, comes with automated enrollment from the OTP Server, which allows a fast rollout of tokens to companies of any size.
For example, financial services, e-commerce or government organizations may require that in addition to a username and password, users receive a call direct to their cell phone, where they enter a PIN on the keypad, pass a voice-recognition test or enter a one-time password (OTP).
A remote access environment for smart devices that gives users secure access without sacrificing convenience via a one-time password --
One of the largest Japanese financial services companies, Mizuho has implemented SafeNet s strong authentication solution, allowing for the creation of one-time password (OTP), two-factor authentication that provides secure remote access to the organization s most sensitive and confidential resources.
MasterCard (NYSE: MA) said that it was launching a banking card with one-time password facilities.
One-Time Password (OTP) is sent via SMS(on the cardholder's registered mobile with the Bank).
It provides multi-factor authentication, adding an extra one-time password to the customer's traditional username and password.