OTAC auth - MFA for PLCnext v2
OTAC auth - MFA for PLCnext
Solutions

OTAC auth - MFA for PLCnext

The partnership between swIDch and Phoenix Contact will allow PLCnext controllers
to use swIDch's OTAC, the world’s first one-way dynamic authentication technology
that enables MFA for PLCNext devices via users smartphones.

OTAC auth with PLCnext technology

swIDch's One Time Authentication Code (OTAC) is the world’s first one-way dynamic authentication technology that enables single-step Multi-Factor Authentication (MFA) for PLCNext devices via users smartphones. Once a PLC is protected with our solution, the user can authenticate to PLC utilizing our dynamic 'one-time authentication code' (OTAC) technology. The code is generated on our mobile app (available on Google Play and Apple App store), is valid for a short period of time and even works offline. OTAC combined with device biometrics and/or PIN provides a highly optimized and secure authentication solution specifically for ICS/OT security challenges.

OTAC auth Resolves:

  • Password sharing in password-only authentication systems
  • Difficulty managing ID/PW specified for each PLC device
  • Difficulty managing user changes (leavers / contractors etc)
  • Hacking attempts using password cracking software
  • Enforce MFA on multiple PLC devices at once.

OTAC auth Benefits:

  • Significantly enhances authentication security on PLC devices, adding MFA capability (without network access)
  • Does not require or rely on Public Key Infrastructure (PKI)
  • Works on fully standalone / air-gapped PLCs as well as networked PLCs
  • No impact to User Experience (UX) - enables single-step login and MFA combined for super fast secure access
  • Works for multiple users on multiple PLC devices
  • Easy to deploy - installs directly onto the PLC
  • No additional hardware required
  • Low cost compared to other MFA solutions utilizing PKI
  • No more forgotten passwords / password resets, means reduced overheads for OT security teams
  • Enforces secure and dynamic login every single time (without having to update passwords)

What’s New in Version 2:

The latest Version 2 introduces several new features and improvements:

  • Enhanced Security: Now, you can protect multiple PLCs with OTAC auth MFA.
  • App Split: The application has been divided into two components: OTAC auth MFA Server and OTAC auth MFA Client.
    • Server: Installable on a central edge PLC.
    • Client: Installable on each PLC you want to protect with MFA.

OTAC auth v2 image 1

 

More supported products coming soon
Resource

OTAC auth MFA Server

OTAC auth MFA Client

 

You can download the OTAC auth - MFA for PLCnext app from the PLCnext Store by Phoenix Contact

google-play-store-logo-png

apple-app-store-logo

 

You can download the OTAC auth app from the respective Google and Apple app stores:
OTAC auth icon

 

You can download all the documentation for using the OTAC auth

You can also watch tutorial videso for the OTAC auth

App Screenshots

* Check out our announcement on the partnership with Phoenix Contact >>

Why swIDch

OTAC, developed by swIDch, is the original technology
that provides all of the following features, tested and substantiated
by the University of Surrey technical report
Why swIDch
DYNAMIC CODE that is
sufficient to IDENTIFY user
Single-step IDENTIFICATION
and AUTHENTICATION
Uni-directional authentication in
off-the-network environment

Single-step identification and authentication with the code alone. Include our biometric option and get single-step MFA. Vastly improved UX by removing steps.

OTAC is a dynamic code, which means the code is constantly changing. Eliminates all use of static information. Forget usernames and passwords forever. Vastly reduced workload for IT helpdesks. 

No network connection required for generating OTAC, enabling uninterrupted use no matter where you are. No more waiting for additional tokens/OTPs and no need for heavy public key infrastructure (PKI). 

 

Highly configurable code parameters and lightweight SDK/applet means wide range of deployment options on many devices across multiple sectors.  

Learn More

'One-time-authentication-code' technical report by University of Surrey Get In touch

Related Topics

swIDch Partners with Phoenix Contact to Unveil Networkless Multi-Factor Authentication on PLCnext Store
swIDch has introduced OTAC auth, an advanced modular user authentication solution available on PLCnext Store, the digital software marketplace of Phoenix Contact. Phoenix Contact PLC device users can seamlessly transition to the One-Time Authentication Code (OTAC)-based user authentication system, offering cutting-edge passwordless access.
Read More
Iran's Gas Stations Cyberattack Sparks Urgent Calls for Industrial Cybersecurity Reform
In recent headlines, an Israel-linked group has claimed responsibility for a cyberattack that disrupted operations at Iran's gas stations, shutting down a significant portion of the country's fuel distribution network. This incident underscores the critical importance of cybersecurity in industrial control systems (ICS) and highlights the vulnerabilities inherent in the systems that power our critical infrastructure.
Read More
Synergizing Standards: How NIS2, CRA, and IEC 62443 Forge a Unified Front in OT Cyber Security
In the rapidly evolving landscape of Operational Technology (OT), maintaining robust cybersecurity measures is crucial. Several key frameworks and directives have emerged to address the unique challenges faced by this sector.
Read More