References
David Whitlock edited this page Apr 28, 2017
·
1 revision
IETF - RFC 4226 - HOTP: An HMAC-Based One-Time Password Algorithm
IETF - RFC 6238 - TOTP: Time-Based One-Time Password Algorithm
NIST - Digital Authentication Guidelines
NCSA - Stay Safe Online campaign
Researchgate - Vulnerability of OTP implemented in internet banking systems of South Korea
TheHackerNews - End of SMS-based 2FA; Yes, it's Insecure!
See the Comeonin wiki for details