ArcotID OTP is a One-Time Password compliant to OATH standards. Once the user's account is provisioned, the client application that you build by using ArcotID OTP SDK takes the user’s PIN as an input and generates passcodes on the user’s device. The user uses this generated passcode at the Web application that is protected by ArcotID OTP authentication. Based on the authentication result, the user is granted access to the protected application.
ArcotID OTP also supports the Transaction Signing feature in the Sign mode of passcode generation. This feature conforms to the OATH Challenge-Response Algorithm (OCRA) defined by RFC 6287.
Passcode generation is an offline process, which means the client application need not connect to the authentication server for generating passcodes.
ArcotID OTP library supports industry-standard passcode generation methods such as counter-based passwords (HOTP), time-based passwords (TOTP), MasterCard Chip Authentication Program (CAP), and VISA Dynamic Passcode Authentication (DPA).
|
Copyright © 2013 CA Technologies.
All rights reserved.
|
|