← Cybersecurity Alphabet Soup

HOTP

HMAC-Based One-Time Password

identityhard

HOTP generates one-time codes from a shared secret and an incrementing counter using an HMAC function. Unlike time-based codes, an HOTP code stays valid until it is used, which suits hardware tokens without clocks. It is the older sibling of TOTP and the foundation the TOTP standard builds on.

Sources

More in identity