Access to web application is controlled by a Username and password. At times we can see some websites requesting for OTP or one time password. A code in app ,SMS, Email. This works like an additional layer to prove user identity.
In this blog post will be exploring how OTP works. Exploring what standard says about this and few implementations.
Here is what's in rest of the blog,