Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.

View Schedule & Pricing
Get a Quote
Book a Meeting

Popular Searches

CISSP Security+ AWS Azure CCNA CompTIA Cloud Cybersecurity

Quick Links

Global Accelerated Learning • Est. 1999
Glossary Term Time-Based One-Time Password (TOTP)

Training Camp • Cybersecurity Glossary

What is Time-Based One-Time Password (TOTP)?

Time-based One-Time Password TOTP, defined in RFC 6238, generates short-lived codes from a shared secret and the current time for MFA.

Glossary > Identity & Access Management > Time-Based One-Time Password (TOTP)

Time-Based One-Time Password (TOTP) Definition: Time-based One-Time Password TOTP, defined in RFC 6238, generates short-lived codes from a shared secret and the current time for MFA.

Understanding Time-Based One-Time Password (TOTP)

Time-based One-Time Password (TOTP) is an algorithm, defined in RFC 6238, that generates short-lived numeric codes by combining a shared secret key with the current time in fixed intervals, typically 30 seconds. It extends the HOTP (HMAC-based One-Time Password) standard from RFC 4226 by using a time counter instead of an event counter. TOTP is widely used in authenticator apps such as Google Authenticator and Authy to provide a second factor of authentication.

Learn More About Time-Based One-Time Password (TOTP):

← Time-Based ACL Back to All Terms Time-Based Token →

Related Cybersecurity Terms

Least Access Principle
Service Identity Rotation
User Role Matrix
User Deprovisioning

Ready to Get Certified?

Turn knowledge into credentials with our instructor-led cybersecurity boot camps.

View All Courses →