UserLock leverages authenticator applications or programmable hardware tokens to generate a One-Time Password for strong two-factor authentication.
In both TOTP and HOTP the token (the OTP generator) generates a numeric code. The security of OTP is based on fact that the codes are constantly changing and that they are single-use, hence the name. HOTP works just like TOTP, except that an authentication counter is used instead of a timestamp.
Different options exist. Using a smartphone as a secure token frees the users from carrying a dedicated token device. This is often thought as the best balance of security, usability and cost available today.
Programmable hardware tokens can act as a "drop-in" replacement of mobile apps. They are a great way to implement MFA for end-users who cannot use a corporate phone.
A hardware token can also be an external device you plug in to your USB port and will automatically type in the OTP key for you. The user just has to tap their device, making the user experience even more frictionless.