[Vigilanteman]

Way back in the 1990s when I was traveling and on business for a well-known corporate name plate, I was issued a credit card sized device with a password which changed every 30 seconds or so. I could log on to my corporate issued laptop with that password only and was automatically logged off anytime I closed down the computer or didn't engage in any keyboard activity for 15 minutes or so.

So, I'm not sure or how this technology is a great improvement.

[rarestia]

Those devices are still in place but are often smartphone apps now. We use RSA’s product for this very thing, but there are plenty of vendors that do the same.

I’m an advocate for certificate-based authentication where a corporation sets up a robust PKI environment in-house and administers user- and device-level certification authentication for everything. It’s seamless to the user, but it prevents unauthorized access. Sadly, most corporations don’t have the brain- or man-power to put these systems into place.

I’ve done it for my personal home network, and it took me almost a week to tweak it to my liking. A corporate environment takes much more time and effort.