Computing the time drift involves the following steps:
- The server time is requested.
- The server returns the time reference in seconds since epoch.
- The application receives the platform time reference in seconds since epoch.
- Both references are submitted to the Digipass SDK.
- The SDK returns the drift between both references.
-
The application stores the drift for future response generations. To store the drift, the application can rely on the Secure Storage SDK.
For more information, refer to the OneSpan Mobile Security Suite Product Guide, Secure Storage SDK.
In Computing and storing the server/client time drift (overview) the authentication server time is retrieved online. It may also be provided by the user directly through the user interface.
OTP generation with corrected platform time (overview)
OTP generation in Response-Only mode with the Digipass SDK involves the following steps:
- The application integrating the SDK retrieves the Digipass vectors and the time drift from its data storage.
- The application calls the SDK's OTP generation function with the Digipass vectors and the time drift.
- The SDK returns an OTP and an RHC or an error code. The dynamic vector is updated.
-
The application updates the dynamic vector in its data storage. To update the dynamic vector, the application can rely on the Secure Storage SDK.
For more information, refer to the OneSpan Mobile Security Suite Product Guide, Secure Storage SDK.
- The application processes the OTP or the error code.
Routines for time synchronization: