Hard Token vs. Soft Token
Is there an official document or statement from RSA that states whether a token type is more or less secure?
- Community Thread
- Forum Thread
- RSA SecurID
- RSA SecurID Access
- Token Auth
- Token Authentication
- Token Authenticator
- Token Authenticators
Hi Terry Tucker,
Both types of tokens are very secure. The use of one type of token over other is only debated on convenience and user experience.
Refer below links and take a quick look "At a Glance" section from the document.
To follow on to the information Sriranga Prasanna provided, token security involves how they are provisioned, delivered and used.
The RSA SecurID Software Token Security Best Practices Guide for RSA Authentication Manager 8.x is a good resource for you to review. It is directed to deployments of RSA SecurID software tokens but there is content applicable to hardware tokens as well. In addition, please read the Important Statement from RSA Regarding RSA SecurID Software Token Provisioning Best Practices. THese resources discuss the best way to mitigate risk on creation and deployment of tokens.