Time-Based One-Time Passwords (TOTP)
Time-Based One-Time Passwords (TOTP) are temporary, one-time passwords generated using a shared secret and current time. Used in multi-factor authentication (MFA), TOTP enhances security by expiring within a short time window, reducing risks like credential theft and replay attacks. In Keycloak, TOTP can be configured as an additional authentication step, integrating with apps like Google Authenticator. It supports policy customization, including hash algorithms, token length, and expiration time. While TOTP increases security, it requires a device for code generation and may be vulnerable to phishing or SIM swap attacks if not properly managed.
Recommended content for you
Top 5 tools to monitor Apache Kafka in 2025 (Prometheus, Grafana and more)
Apache Kafka is an open-source distributed event streaming platform that underpins many of today’s real-time data pipelines. As organizations scale their Kafka deployments to support…
Managed Kafka Services Comparison: Instaclustr vs Inteca vs DigitalOcean
Why use a Managed Apache Kafka service? Apache Kafka is an open-source distributed streaming platform that powers real-time data pipelines and event-driven applications. But while…
Redpanda vs Kafka: performance, compatibility, and when to use which
Apache Kafka vs Redpanda. What’s the real difference? Apache Kafka® is the foundational streaming platform powering real-time data pipelines at companies like LinkedIn, Netflix, and…
Need expert support for customer and workforce identity management?
Contact us today to learn how we cover everything – from architecture design to deployment and 24/7 maintenance
