One-Time Passwords
Jump to navigation
Jump to search
One-Time Passwords are a special authentication scheme for use over insecure lines without the need for complex encryption and utilizing the normal login procedure. They can usually be safely used with telnet or plain ftp for example. The basic idea is to use a different password each time authentication is needed and to never reuse a used password. Also it must not be possible to easily compute yet unused passwords even with complete knowledge of all used passwords so far.
There are two types of One-Time Password systems:
- Pregenerated lists of completely random passwords, and
- Systems based on a non-inversible function, e.g. cryptographically secure hash functions