BT sets up one-time password service

BT sets up one-time password service

Summary: BT Managed Authentication is aimed at banks and other companies that want to use two-factor authentication for customer access to online services

TOPICS: Security

BT has launched a service providing one-time passwords to banks and other organisations that want to use two-factor authentication for customer access to online products.

ZDNet UK's App of the Day

ZDNet UK's App of the Day

Sign up to ZDNet UK's daily newsletter and get all the latest tech news as well as an app recommendation of the day, hand-picked by our editorial team

Sign up+

The BT Managed Authentication service can be rebranded by businesses as part of their identity protection for users. It sits alongside username and password authentication, the company said in its announcement on Thursday - thus creating two levels of security.

One-time passwords can be generated either by a dongle or by software on a customer's computer, according to BT. Typically, one-time passwords are pseudo-random numbers, generated by an algorithm, that expire after a single use.

"Businesses and end users are facing increasing attacks against online services, and the need for better security is vital," Jeffrey Schmidt, BT Global Services's executive global head of business continuity, security and governance, said in a statement.

Other companies, including Virgin Media Business, already offer managed authentication services to British businesses.

A BT spokesman said it has trialled BT Managed Authentication with several tens of thousands of business internet banking and e-corporate banking customers of Clydesdale Bank and Yorkshire Bank, both of which are owned by National Australia Group.

UK banks lag countries in Europe and Asia in terms of rolling out online two-factor authentication, according to Andy Buss, a security analyst at Freeform Dynamics.

"The UK is a lot further behind compared with some countries in Asia, where fobs are mandated," Buss told ZDNet UK. "It's absolutely necessary to increase the degree [of two-factor authentication] in the financial and banking system."

Get the latest technology news and analysis, blogs and reviews delivered directly to your inbox with ZDNet UK's newsletters.

Topic: Security

Tom Espiner

About Tom Espiner

Tom is a technology reporter for He covers the security beat, writing about everything from hacking and cybercrime to threats and mitigation. He also focuses on open source and emerging technologies, all the while trying to cut through greenwash.

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.


Log in or register to start the discussion