Overview#

A Hard tokens is a type of Token that is a hardware-secured key.

Authentication is accomplished by proving possession of the device and control of the key. Hard tokens shall:

• require the entry of a password or a Biometric Sample to activate the authentication key;
• not be able to export authentication keys;
• be FIPS 140-2 validated (Based on NIST.SP.800-63)
  • overall validation at Level 2 or higher,
  • physical security at Level 3 or higher.

OATH's Token Identifier specification is a good reference.

More Information#

There might be more information for this subject on one of the following:

• Access Card
• LOA 4
• M-04-04 Level of Assurance (LOA)
• Security Token
• Shared Secret
• Token
• Trust Model
• Two-Factor Authentication
• Universal Second Factor

---

• [#1] - OATH's Token Identifier specification|https://openauthentication.org/token-specs/|target='_blank'] - based on information obtained 2019-12-15