About us

Token2

Token2 is a cybersecurity company specialized in the area of multifactor authentication. Founded by a team of researchers and graduates from the University of Geneva with years of experience in the field of strong security and multifactor authentication, Token2 has invented, designed and developed various hardware and software solutions for user-friendly and secure authentication. Token2 is headquartered in Geneva, Switzerland

Token2 used to be a part of a multifactor authentication research project at the University of Geneva, which has led to a spin-off startup company back in 2013

FIDO Alliance Member

Token2 is a member of FIDO Alliance, and we implement the FIDO protocols (UAF, U2F, WebAuthN and CTAP) on our hardware security keys as well as our TOTPRadius appliance.

Swiss Made Software

Token2 is a member of swiss made software label. The swiss made software label is dedicated to promoting the Swiss software industry, both at home and abroad. It combines Swiss values such as quality, reliability and precision – especially in software development.

Token2 TM

TOKEN2 is a registered trademark of the TOKEN2 Multifactor authentication company (registered by Geneva Cantonal Trade Register) at the Swiss Federal Institute of Intellectual Property. Registration number № 743850.

A featured hardware supplier

TOKEN2 is listed as a featured hardware token vendor by companies like Microsoft, Untis, US Government, ISDecicions, Watchguard and many others.

Products sold

Orders placed

Corporate contracts

Satisfied customers

Featured product

  • Molto2 - USB-programmable TOTP hardware token

    A multi-profile USB-programmable TOTP hardware token that can hold up to 100 TOTP accounts.
    The profiles can be provisioned/configured via USB using our Molto-2 USB Config tool.
    Molto-2 also has additional features such as OTP shown as a QR image and HID/Keyboard emulation feature.

  • Molto2 - HID Emulation feature

    If Mode1 display mode is active, the device can send the OTP over USB thanks to HID emulation function built-in. This will allow minimizing the user actions needed to authenticate with any 2FA-enabled system.
    The video shows the process of logging in to a Gmail account using this feature (the user selects Google profile on the device and presses a button instead of typing in the 6 digits. Molto-2 will also submit the form as it sends the Enter key together with OTP)

Classic hardware tokens

We have designed and prototyped several models of OATH compliant hardware tokens . We currently have agreements with a number of different factories that produce the equipment based on our design and algorithms. Our classic hardware tokens can be used in many systems supporting standard TOTP protocol, including WordPress, Azure MFA Server, WebUntis and many others. Token2 is listed by Microsoft as a recommended TOTP hardware token supplier for Azure MFA.

Independent Compliance Check

RFC6238 compliance confirmed by CertX, the first swiss accredited certification body for product certification in the scope of industrial cybersecurity and functional safety. TOKEN2 C202 TOTP hardware token - Independent Compliance Check report by CertX

Programmable hardware tokens

Token2 programmable card or keyfob tokens are "drop-in" replacement of OTP mobile apps (such as Google Authenticator or similar). They support authentication backends requiring TOTP tokens without the possibility of specifying the shared secret keys (i.e. keys are generated on server-side only) and are compatible with services such as Google, Facebook, Microsoft, Amazon, etc. We are the inventors and manufacturers of the world's first multi-profile programmable TOTP hardware tokens, such as Molto-1 and Molto-2

Before buying, you can test integration and compatibility with your systems using our virtual token, an HTML5 app that fully emulates our classic TOTP tokens. This tool can also be used as a cross-platform TOTP application (for testing purposes only). Just launch the tool with your base32 seed value set as the "key" argument of the URL. The full source code of this tool is available under our GitHub repository

TOTPRadius virtual appliance

TOTPRadius is a 2FA authentication server deployed as a virtual appliance and designed to run on Hyper-V or VMWare hypervisors. This complements the variety of products offered by Token2, any hardware token sold by Token2 can be backed by TOTPRadius as the authentication service. Newer versions of TOTPRadius allow organizing access to corporate VPN using FIDO Security keys (legacy U2F or FIDO2) both via 2FA and Passwordless method. TOTPRadius is free for 5 users and more licenses can be purchased online if needed. Token2 TOTPRadius provides the RADIUS RFC-2865 for TOTP RFC-6238 based authentication. With TOTPRadius you can integrate a large variety of third-party products and systems with multi-factor authentication. A number of enterprise products and services like VPNs (including Meraki CVPN and Fortinet VPN), Citrix XenApp/XenDesktop, VMWare View, and many others provide support for RADIUS servers to validate the second factor of user authentications. TOTPRadius features many innovative approaches to multifactor authentication, such as self-service enrollment and FIDO security keys-based L2TP VPN access using VPN Portal. To ensure the security of the VPN Portal is at the highest level, we have contracted an independent security company, SySS GmbH , which has conducted the penetration testing and produced a security certificate available below. The TOTPRadius VPN Portal component is currently labeled as "Certified Website - Approved Security" by SySS Gmbh.

read more...

Impressum


Commercial register entry
Registered company name: TOKEN2 Sàrl
Competent Office:
Registre du Commerce du Canton de Genève

Commercial register number: CHE-407.231.229
VAT number: CHE-407.231.229 TVA

Impressum or Imprint is a statement of ownership of a web presence that businesses are legally required to publish

Impressum

Certifications & Compliance

We operate in compliance with the leading industry standards and certifications in cybersecurity, product quality, safety and sustainability.

read more

Resellers & Distributors

Direct B2B and B2C are our main channels of distribution, but we also use distributors and resellers where required

read more

Security of the data

We have been getting questions about the security surrounding the shared secret key hashes (seeds) of our hardware tokens. On this page, we describe how this data is secured, operated, stored, and destroyed.

TOTPRadius Virtual appliance

A simple and cost-effective way to provide secure, policy-compliant and user-friendly on-premises two-factor authentication solution with self-enrollment

read more