Home

TOTPs

TOTP stands for Time-based One-Time Password. It is an algorithm defined in RFC 6238 that generates a temporary passcode valid for a short duration, typically 30 seconds. The passcode is generated using a shared secret key and the current time, ensuring synchronization between the user and the authentication server.

To set up TOTP, users typically scan a QR code with an authenticator app, which stores the

TOTP is widely adopted in multi-factor authentication (MFA) systems. It is supported by various authenticator apps

secret
key.
The
app
generates
a
new
code
every
30
seconds.
During
login,
the
user
provides
this
code
along
with
their
password.
The
temporary
nature
and
the
requirement
of
the
secret
key
enhance
security
by
preventing
unauthorized
access.
like
Google
Authenticator,
Authy,
and
Microsoft
Authenticator.
Many
online
services,
including
email
providers,
banks,
and
social
media
platforms,
use
TOTP
to
secure
user
accounts.
Its
dynamic
and
time-sensitive
nature
makes
it
a
robust
method
for
verifying
user
identities.