Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.

View Schedule & Pricing
Get a Quote
Book a Meeting

Popular Searches

CISSP Security+ AWS Azure CCNA CompTIA Cloud Cybersecurity

Quick Links

Global Accelerated Learning • Est. 1999
Glossary Term HMAC-Based One-Time Password (HOTP)

Training Camp • Cybersecurity Glossary

What is HMAC-Based One-Time Password (HOTP)?

HMAC-based One-Time Password HOTP is the RFC 4226 algorithm generating counter-based one-time codes for multi-factor authentication.

Glossary > Identity & Access Management > HMAC-Based One-Time Password (HOTP)

HMAC-Based One-Time Password (HOTP) Definition: HMAC-based One-Time Password HOTP is the RFC 4226 algorithm generating counter-based one-time codes for multi-factor authentication.

Understanding HMAC-Based One-Time Password (HOTP)

HMAC-based One-Time Password HOTP is a one-time password algorithm, defined in RFC 4226, that generates authentication codes by applying an HMAC-SHA-1 function to a shared secret key and an incrementing counter value. Because each code is derived from an event counter rather than the current time, HOTP passwords remain valid until used, and the client and server must keep their counters synchronized. HOTP forms the basis of the time-based TOTP algorithm and is widely used in multi-factor authentication hardware tokens and apps.

Learn More About HMAC-Based One-Time Password (HOTP):

← HMAC Hash-Based Message Authentication Code Back to All Terms Hold-Down Timer →

Related Cybersecurity Terms

Smartcard Authentication
Proximity Authentication
Short-Lived Credential
EAP Chaining

Ready to Get Certified?

Turn knowledge into credentials with our instructor-led cybersecurity boot camps.

View All Courses →