Dynamic password mechanism is also the safest means known. Dynamic passwords are also called one-time passwords. Dynamic password is a constantly changing password, and its change comes from the ever-changing operating factors that generate passwords. Usually, two factors are used to generate dynamic passwords: one is the user's private password. It represents the identification code of the user's identity and is fixed. Second, it is a variable factor. It is the constant change of the change factor that produces the ever-changing dynamic password. Using different mutation factors, different dynamic password authentication technologies are formed: authentication technology based on time synchronization, authentication technology based on event synchronization, and authentication technology based on challenge/response asynchrony.
Among the distribution methods of dynamic passwords, the common ones are: password card, mobile phone software token, short message sending, password card, etc. The biggest problem of these methods is cost and operation, which directly leads to many obstacles in the promotion process. Due to these obstacles, many individuals or enterprises that do not use two-factor verification are or will suffer serious losses. In addition, there are some problems, such as delay in sending short messages, compatibility of mobile phone software tokens, and easy loss and damage of password cards.
Dynamic password has a wide range of applications, including online banking, games, ATM, enterprise network management system and all other applications related to identity authentication. Especially with the change of Trojan attack mode, dynamic password is the safest solution at present.