| Developers: | Active software (rutoken) |
| Date of the premiere of the system: | 2019/04/03 |
| Branches: | Internet Services, Information Technology |
| Technology: | Information Security - Authentication, Information Security - Encryption Tools |
Content |
OTP root is the second factor in protecting the user's account. With the hardware second factor, you can simplify the link between the login and password from the site, and long strong passwords no longer need to be entered manually and stored - they are automatically created and substituted into the OTP-token input forms.
2024: Multifactor Service Compatibility
The specialists of the companies MULTIFACTOR and "" Aktiv checked the compatibility of the Rutken OTP device Rutoken MFA and with the system two-factor authentication MULTIFACTOR for a secure remote connection to corporate information systems. According to the test results, the parties signed a certificate confirming compatibility. This was announced by "Asset" on March 22, 2024. More. here
2019
Start of serial production of Rutoken OTP hardware authenticators
On April 3, 2019, Aktiv announced the start of serial production of Rutken OTP hardware authenticators.
OTP is a secure tool for logging into personal accounts and accounts of websites and portals. Specialists from the Ministry of Telecom and Mass Communications and foreign experts from the US National Institute of Standards and Technologies (NIST) confirm this, pointing out the unreliability of SMS, and recommend not using passwords and SMS to log on to resources. Compared to software generators of one-time passwords, hardware authenticators work even if the battery sits down in the phone, with poor mobile quality, when the SIM card is removed, the phone is broken or forgotten or stolen.
A one-time password is created using cryptographic algorithms a secret key and a counter of the number of clicks on the password generation button. The attacker cannot obtain this secret key because it cannot be intercepted or read from Rutoken's device.
The use of one-time password generators is convenient for one-time authentication and single sign-on (Single Sign-On), access to a remote client bank and popular site management systems.
Due to its ease of use, one-time password generators are most often used in the corporate sector and especially in the SOHO segment.
Description and characteristics
Safety
Rutoken one-time password generators:
- make it impossible to leak confidential information from the site's personal account due to password theft;
- you will not waste precious time restoring a forgotten or blocked complex long password. When using hardware factor 2, the password can be quite simple.
In creating a one-time password, there is a cryptographic basis and a secret key and a counter of the number of clicks on the password generation button are involved. The main secret component of this scheme is the secret key. The attacker cannot obtain this secret key because it cannot be intercepted or read from the Rutoken device.
Principle of operation
The OTP root connects to the USB port and defines itself as a standard HID keyboard. To enter the site, you need not only to know the login password, but also to present a unique one-time password, which is entered automatically into the screen form when you click the button on Rutken OTP.
Specifications
As of April 2019, the token has the following characteristics:
One-time password generation algorithm
- RFC 4226 HOTP
Platforms
Connection interface
Dimensions
- 58kh16kh8mm
Weight
- 6.3g
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |