A SECRET WEAPON FOR MANAGER SERVICE PROVIDERS

The verifier SHALL use authorised encryption and an authenticated shielded channel when collecting the OTP in order to provide resistance to eavesdropping and MitM assaults. Time-dependent OTPs [RFC 6238] SHALL have a defined lifetime that is decided from the expected clock drift — in both direction — on the authenticator over its lifetime, plu