MIRACL Trust OTP is an addition to the standard MIRACL Trust authentication flow for use cases that don’t support direct integration, like older networking equipment, VPN software and industrial machinery. As the name suggests, authentication is established using one-time passwords or OTPs.

Despite the name, one-time passwords have very different security characteristics from common passwords. The main difference between the two is that OTPs are short-lived - they are generated as a product of strong authentication and can be used only once and in a short amount of time after their creation. Those characteristics make them resistant to all attacks typical for standard passwords.

To authenticate to your service provider, follow the following steps.

  1. You open an OTP generation link provided by your service provider. It should look something like this:


    The link is only an example. Please check with your service provider for yours.

  2. You need to register your device for a User ID before you can generate an OTP. You can skip this step if you already have one.

  3. You authenticate with your PIN, and you are issued an OTP.


    OTP screen.

  4. Use the OTP in the authentication prompt for your service provider.

    The OTP is deactivated when it expires. You must generate a new one before you try using it for authentication. You can do that by clicking the Retry button on the screen that opens when the OTP expires.