CISSP: An authentication system that creates one-time passwords that are encrypted with secret keys. There are two main types of synchronized token one-time password generators: counter-based and time-based. If the token device and authentication service use counter-synchronization, the user will need to initiate the logon sequence on the computer and push a button on the token device. This causes the token device and the authentication service to advance to the next authentication value. This value and a base secret is hashed and displayed to the user. This is the user's one-time password.

Question

An authentication system that creates one-time passwords that are encrypted with secret keys. There are two main types of synchronized token one-time password generators: counter-based and time-based. If the token device and authentication service use counter-synchronization, the user will need to initiate the logon sequence on the computer and push a button on the token device. This causes the token device and the authentication service to advance to the next authentication value. This value and a base secret is hashed and displayed to the user. This is the user's one-time password.

John Intindolo · Accepted Answer

Todd has been asked by the security officer to purchase a counter-based authentication system. Which of the following best describes this type of system?
- A biometric system that bases authentication decisions on physical attributes
- An authentication system that creates one-time passwords that are encrypted with secret keys
- A biometric system that bases authentication decisions on behavioral attributes
- An authentication system that uses passphrases that are converted into virtual passwords

CISSP

Author