{"id":265716,"date":"2023-08-04T17:09:34","date_gmt":"2023-08-04T14:09:34","guid":{"rendered":"https:\/\/shop.thekernel.ua\/otp-passwords-on-yubikey-how-it-works"},"modified":"2023-08-04T17:31:34","modified_gmt":"2023-08-04T14:31:34","slug":"otp-passwords-on-yubikey-how-it-works","status":"publish","type":"post","link":"https:\/\/shop.thekernel.ua\/en\/otp-passwords-on-yubikey-how-it-works","title":{"rendered":"OTP passwords on YubiKey \u2014 how it works"},"content":{"rendered":"

[et_pb_section fb_built=”1″ _builder_version=”4.21.0″ _module_preset=”default” global_colors_info=”{}”][et_pb_row _builder_version=”4.21.0″ _module_preset=”default” global_colors_info=”{}”][et_pb_column type=”4_4″ _builder_version=”4.21.0″ _module_preset=”default” global_colors_info=”{}”][et_pb_text _builder_version=”4.21.2″ _module_preset=”default” text_font_size=”16px” global_colors_info=”{}”]OTP passwords are one-time passwords (the origin of OTP is from English one time password) that are used for one authentication session. Their effect is usually limited by time. You may have received such codes by phone or mail when trying to access online banking or when setting up two-factor authentication using the Google Authenticator app. <\/span><\/p>\n

Unlike a static password, a one-time password provides greater security \u2014 if an attacker even intercepts it, he may not have time to use it. OTP-passwords are created thanks to the algorithm of random numbers, so the fraudster will not be able to guess which sequence will occur next time. And this is also an advantage of OTP passwords. <\/span><\/p>\n

Of course, the longer the password, on the one hand, it is more difficult for an attacker to pick it up, but also, on the other hand, it is more difficult for an ordinary user to remember and enter the password manually in time. So in this matter, technology comes to the aid of a person. The YubiKey is one of the most effective, so let’s take a look at how it works.<\/span><\/p>\n

How OTP passwords work with YubiKey<\/b><\/h2>\n

YubiKey 5<\/span><\/a> and<\/span> YubiKey FIPS<\/span><\/a> security key series<\/span> support several OTP protocols, these are:<\/span><\/p>\n

Yubico OTP<\/b> \u2014 128-bit password consisting of 44 characters; 12 of them are immutable, they serve as an identifier for the YubiKey device itself. Such a password is almost impossible to forge. <\/span>Below is an example of such a password, called three times.<\/span><\/i><\/p>\n\n\n\n
cccjgjgkhcbb<\/b>irdrfdnlnghhfgrtnnlgedjlftrbdeut<\/code><\/span><\/p>\n

 <\/p>\n

cccjgjgkhcbb<\/b>gefdkbbditfjrlniggevfhenublfnrev<\/code><\/span><\/p>\n

 <\/p>\n

cccjgjgkhcbb<\/b>cvchfkfhiiuunbtnvgihdfiktncvlhck<\/code><\/span><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

<\/span><\/i><\/p>\n