RSA SecurID tokens that generate the variable part of the password are offered in hardware, software and smart card formats.
The hardware token is a credit card or key fob sized device that displays a new string of digits every 30 or 60 seconds. The code is a dynamic ID that can be used only once and is only valid when it is displayed. The generation of a pseudorandom string of digits and the cooperation with the authentication server are based on a time synchronization mechanism.
One-Time Password
During sessions where a connection is being established with a device within an authentication system, RSA SecurID systems users included in the RSA Authentication Manager user database provide their username, and then their PIN number together with the TOKENCODE (the card readout) that make up a one-time password called PASSCODE.
RSA offers the following authenticators:
- SD600 token key fob—contains and integrated microchip and LCD display for the tokencode, but is small enough to be conveniently attached to a key-ring,
- SD200—a credit-card format token,
- SD520—a PINPAD token that requires the user’s PIN code to display the tokencode,
- SD820—a Windows desktop software token that offers PINPAD token functionality.
|
