A New Standard Based Road to Interoperable Strong Authentication

  • Philip Hoyer


This paper analyses the new standards emerging to allow interoperability of systems that provide strong authentication. After a description of the entities that constitute a strong authentication ecosystem, the paper provides a clear overview of existing and new standard drafts from the specific viewpoint of what kind of interoperability they allow between the different entities. It outlines what standards are available now and which ones are coming, detailing the interoperability now and in the future.


Smart Card Validation System Connected Device Validation Framework Validation Service 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. [RFC4226] IETF, “HOTP: An HMAC-Based One-Time Password Algorithm”,
  2. [MOathO5] IETF, “Mutual OATH: HOTP Extensions for mutual authentication”,
  3. [MasO4] MasterCard International Incorporated, “Chip Authentication Program-Functional Architecture”, September 2004Google Scholar
  4. [RSAO5a] RSA Laboratories, “PKCS #11 v2.20 Amendment 1: PKCS #11 mechanisms One-Time Password Tokens”, ftp://ftp.rsasecurity.comlpub/pkcs/pkcs-1 11v2-20/pkcs-1 1v2-20a1.pdf
  5. [RSAO6a] RSA Laboratories, “One-Time Password Validation Service”, ftp://ftp.rsasecurity.comlpub/otps/vs/otp-validation-service-vl-O.pdf
  6. [RSAO6b] RSA Laboratories, “One-Time Password Validation Service”,
  7. [OXKMSO6]IETF, “XKMS Provisioning of OATH Shared Secret Keys”,

Copyright information

© Friedr. Vieweg & Sohn Verlag | GWV-Fachverlage GmbH, Wiesbaden 2006

Authors and Affiliations

  • Philip Hoyer
    • 1
  1. 1.Activldentity (UK)London

Personalised recommendations