California-based MY TrueCloud has released Invisible Cloud-Token, a tokenless way to deliver two-factor authentication via the cloud.

MY TrueCloud uses proprietary algorithms to create one time passwords that a system uses automatically without an end-user seeing them. This web-based two-factor authentication method uses an existing VPN or MY TrueCloud’s SSL/VPN that optimizes the tokenless system. The technology automatically configures the browser and integrates the OTP token. When a user launches the browser, a script automatically generates and delivers the OTP.

Invisible Cloud-Token is based on industry standards and uses HTML5 and OATH. It runs on any HTML5-enabled platform, including both desktop and mobile systems. It will function with password-based authentication and existing passwords in LDAP or Active Directory.

---

Related articles:

OATH organization releases first spec for cross-device authentication OATH delivers on 2006 roadmap early; challenge/response Internet-draft for mutual authentication submitted to IETF ActivIdentity announces strong authentication solution supporting OATH one-time password algorithm