Traditional passwords are static, they are easy to be stolen and vulnerable to replay attacks. A one-time password (OTP) is a dynamic password that is valid for only one login session or transaction. This means that a potential intruder who manages to record an OTP that was already used to log into a service or to conduct a transaction will not be able to abuse it, since it will be no longer valid.

OTPs are generated by security token devices. OTP tokens. They are often categorized as hardware token versus software token. A hardware token is a dedicated hardware device for generating one-time passwords, and it is made in various form factors, such as key fob, display card and grid cards. A software token is a software app that typically runs on smart phones.

DualShield supports and provides both hardware and software tokens, in a number of products.