Can displaying date and time on screen upon TOTP login failure makes system more vulnerable?
We are using TOTP(https://datatracker.ietf.org/doc/html/rfc6238) for a web application to enhance the security. TOTP works on UTC. if system clock drifts OR NTP is not synced, TOTP generated by application (like MS Authenticator, or Google… Continue reading Can displaying date and time on screen upon TOTP login failure makes system more vulnerable?