How do Protiva solutions bring more security than traditional passwords?
A. Passwords are called single-factor or 1-factor authenticators. This is because passwords only involve “something you know”. If someone were to discover your password, they would be able to gain access to anything protected with that password. Smart card authentication devices are called dual-factor or 2-factor authenticators. To use an authentication device, you must have the smart card device itself (something you have) and must know the correct PIN (something you know). If attackers were to get access to your authentication device, it would be of no use to them unless they also knew your PIN. Similarly, if the attackers were to discover your PIN, it would be useless to them unless they also had your token. The Protiva solutions make use of this concept as the simplest solution set for two factor authentication and can then extend as far as authentication of the server asking for the password thus getting into the realm of mutual authentication.
