all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Security Implications of Using TOTP in Place of Passwords?

Add to bookmarks
Nov. 9, 2022, 5:53 p.m. | /u/TheArchitect4855

cybersecurity www.reddit.com

Time-based one-time passcodes are typically used as a second factor in password-based authentication schemes. What would the security implications be of using *only* a TOTP code for logins? (e.g., an email + TOTP code to authenticate a user). Would this even be secure at all?

My intuition says this would be secure, as guessing a 6 or 8 digit code is 1 in 999 999 or 1 in 99 999 999, respectively, and these codes typically change very frequently. This …

cybersecurity passwords security totp

Visit resource

More from www.reddit.com / cybersecurity

Linux Package Vulnerability analysis tools. 4 hours ago | www.reddit.com
analysis bill boot called +28
Monday.com removes "Share Update" feature abused for phishing attacks 9 hours ago | www.reddit.com
cybersecurity
I have an hour long technical interview for a Security Analyst at a Trading Software … 10 hours ago | www.reddit.com
analyst cybersecurity interview questions +7
Password and MFA reset user identity verification standards? 12 hours ago | www.reddit.com
asking cis cybersecurity hardware +20
Combatting impostor syndrome??? 14 hours ago | www.reddit.com
certification culture cybersecurity forensics +10
Dell warns of data breach, 49 million customers allegedly affected 15 hours ago | www.reddit.com
breach customers cybersecurity data +2
Georgia education agency's MOVEit data theft impacted 800K 15 hours ago | www.reddit.com
agency cybersecurity data data theft +4
Consultant charged with $1.5M extortion of IT giant 16 hours ago | www.reddit.com
charged consultant cybersecurity ethics +6
Zscaler confirms breach rumours were false 17 hours ago | www.reddit.com
cybersecurity

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Expert Global Security Solutions Specialist

@ CHS Inc. | Inver Grove Heights, MN, US, 55077-1721
View on infosec-jobs.com

Security Operations Senior Associate - Perimeter Response

@ JPMorgan Chase & Co. | Houston, TX, United States
View on infosec-jobs.com

Cybersecurity Engineer IV

@ ManTech | 203O - CustomerSite,Washington,DC
View on infosec-jobs.com

Senior Site Reliability Engineer - Security

@ Klaviyo | Boston, MA
View on infosec-jobs.com

Information Security Specialist (Cloud Security)

@ Vertiv | Philippines
View on infosec-jobs.com

Business Value Consultant

@ Sumo Logic | United States
View on infosec-jobs.com
View more jobs