OTP application concepts
The goal of this section is to cover the critical properties of the OTP application that apply to most or all of the configurations. These properties include the following:
-
Slots are the foundation of the OTP application; each slot can be programmed with one configuration. This article covers slot properties and activation with each configuration type.
-
Let's say you have programmed a slot with a Yubico OTP configuration. When you activate that slot, the key generates an OTP. But how is that OTP communicated to a host device during authentication? This article covers the HID protocol, which the YubiKey uses when connected to a host over USB or Lightning, as well as the NDEF protocol, which the YubiKey uses to communicate wirelessley over NFC.
ModHex (modified hexadecimal encoding)
When a Yubico OTP or OATH HOTP is generated, the encrypted passcode is a byte string, but when these passwords are sent to a host, they appear as a character string on screen. ModHex is an encoding scheme developed by Yubico to translate the raw bits of OTPs/HOTPs into ASCII/UTF characters in a manner that ensures correct communication and interpretation, regardless of the communication protocol used by the YubiKey or the host's keyboard language configuration. This article covers what's included in the ModHex character set, how it works, and why it's important, as well as how ModHex can be used when configuring static passwords.