Time-based One-time Password Algorithm
This article is a stub. You can help the IndieWeb wiki by expanding it.
The Time-based One-time Password Algorithm (TOTP) is a mechanism of generating a one-time password from a shared secret key and the current time, often used for two-factor authentication.
One Time Password
(stub, could be expanded into its own page, one time password, and redirects fixed accordingly)
The more general concept of a one time password can be generated in other ways, and is sometimes communicated via email.
Services that Support TOTP
- GitHub - GitHub uses TOTP for two-factor auth when signing in
- Google - Google uses TOTP for two-factor auth when signing in
- indieauth.com - indieauth.com used to support TOTP as a login mechanism
See Also
- Pebble - in particular Password-less Logins from Your Own Domain with a Pebble Watch
- Two-factor authentication
- HMAC-based One-time Password Algorithm
- https://ben.thatmustbe.me/article/2014/10/16/1/totp_and_you
- RFC 6238: TOTP: Time-Based One-Time Password Algorithm
- 2021-09-29 Krebs on Security: The Rise of One-Time Password Interception Bots
OTP Agency customers would enter a targetβs phone number and name, and then the service would initiate an automated phone call that alerts that person about unauthorized activity on their account. The call would prompt the target to enter an OTP tokenβ¦