Patent attributes
Techniques are provided for security-aware single-server passcode verification for one-time authentication tokens. An exemplary method comprises the steps of: receiving an authentication passcode generated by a token associated with a user, wherein the received authentication passcode is based on at least one protocode and embedded auxiliary information; and processing the received authentication passcode using a single processing device to extract the embedded auxiliary information from the received authentication passcode, wherein the embedded auxiliary information comprises one or more of two different signals, such as a silent alarm signal and a drifting key signal. The single processing device optionally implements software modules of first and second authentication servers. The single processing device optionally comprises one or more sources of pseudorandom information for at least two of an auxiliary channel, a silent alarm and a drifting key.
