RSS
Логотип
Баннер в шапке 1
Баннер в шапке 2

Rutoken OTP

Product
Developers: Active software (rutoken)
Date of the premiere of the system: 2019/04/03
Branches: Internet Services,  Information Technology
Technology: Information Security - Authentication,  Information Security - Encryption Tools

Content

Rutoken OTP

OTP root is the second factor in protecting the user's account. With the hardware second factor, you can simplify the link between the login and password from the site, and long strong passwords no longer need to be entered manually and stored - they are automatically created and substituted into the OTP-token input forms.

2024: Multifactor Service Compatibility

The specialists of the companies MULTIFACTOR and "" Aktiv checked the compatibility of the Rutken OTP device Rutoken MFA and with the system two-factor authentication MULTIFACTOR for a secure remote connection to corporate information systems. According to the test results, the parties signed a certificate confirming compatibility. This was announced by "Asset" on March 22, 2024. More. here

2019

Start of serial production of Rutoken OTP hardware authenticators

On April 3, 2019, Aktiv announced the start of serial production of Rutken OTP hardware authenticators.

OTP is a secure tool for logging into personal accounts and accounts of websites and portals. Specialists from the Ministry of Telecom and Mass Communications and foreign experts from the US National Institute of Standards and Technologies (NIST) confirm this, pointing out the unreliability of SMS, and recommend not using passwords and SMS to log on to resources. Compared to software generators of one-time passwords, hardware authenticators work even if the battery sits down in the phone, with poor mobile quality, when the SIM card is removed, the phone is broken or forgotten or stolen.

A one-time password is created using cryptographic algorithms a secret key and a counter of the number of clicks on the password generation button. The attacker cannot obtain this secret key because it cannot be intercepted or read from Rutoken's device.

The use of one-time password generators is convenient for one-time authentication and single sign-on (Single Sign-On), access to a remote client bank and popular site management systems.

Due to its ease of use, one-time password generators are most often used in the corporate sector and especially in the SOHO segment.

Description and characteristics

Safety

Rutoken one-time password generators:

  • make it impossible to leak confidential information from the site's personal account due to password theft;
  • you will not waste precious time restoring a forgotten or blocked complex long password. When using hardware factor 2, the password can be quite simple.

In creating a one-time password, there is a cryptographic basis and a secret key and a counter of the number of clicks on the password generation button are involved. The main secret component of this scheme is the secret key. The attacker cannot obtain this secret key because it cannot be intercepted or read from the Rutoken device.

Principle of operation

The OTP root connects to the USB port and defines itself as a standard HID keyboard. To enter the site, you need not only to know the login password, but also to present a unique one-time password, which is entered automatically into the screen form when you click the button on Rutken OTP.

Specifications

As of April 2019, the token has the following characteristics:

One-time password generation algorithm

Browsers

Platforms

Connection interface

Dimensions

  • 58kh16kh8mm

Weight

  • 6.3g