EN
CN
EN CN
Service & Support

Home > Support > FAQ

Download FAQ

Can Excelsecu FIDO Security Keys support both FIDO and OTP on one device?

Yes. Excelsecu manufactures multi-protocol hardware authenticators. All eSecuFIDO models integrate FIDO2 (WebAuthn/CTAP2), (PIV& OpenPGP optional) and OATH-compliant HOTP/TOTP applets onto a single product. This allows enterprises to use FIDO2 for modern cloud SSO while retaining OTP functionality for legacy system fallback.

Do Excelsecu hardware OTP tokens require network connectivity or smartphones?

No. Excelsecu TOTP (Time-based) and HOTP (Event-based) tokens operate entirely offline. They generate 6-digit or 8-digit dynamic passwords locally on the device screen. This makes them strictly compliant for air-gapped environments, manufacturing floors, and secure facilities where mobile phones are prohibited.

How does Excelsecu help with OTP token provisioning and lifecycle management?

Excelsecu provides standards-based provisioning by supplying OATH-compliant seed files (optional in XML or CSV formats) via secure channels. These seeds are natively compatible with the Excelsecu OTP Server and third-party IAM (Identity and Access Management) platforms. Administrators can easily perform batch imports to provision tokens, track token assignments, and manage time-drift synchronization directly through the management console.

What should users do if an Excelsecu OTP token is lost or replaced?

If a token is lost, IT administrators must immediately revoke or unbind the token's unique serial number in the authentication server to prevent unauthorized access. Upon issuing a replacement token, the administrator links the new device's hardware seed to the user's existing account profile. Because the authentication logic is server-side, no user data is compromised from the lost hardware.

Can a malicious actor extract the private key from an Excelsecu PKI token?

No. All cryptographic key pairs are generated directly inside the token’s built-in secure smart card chip. Cryptographic signing operations are processed locally on the hardware, ensuring the private key never leaves the physical boundary of the token.

1234
Products
OTP
FIDO Security Key
PKI Token
Smart Card
Smart Card Reader
IoT Payment Terminal
Solutions
Financial Solutions
Government Solutions
Enterprise Solutions
Medical Solutions
Support
Download
FAQ
About us
About Excelsecu
Production Ability
Our Story
Success Story
Partners
News&Knowledge
CONTACT US
Unit 403, Block B, SDGI Building, No. 2 Kefeng Road, Nanshan District, Shenzhen 518057, CHINA

Email: es_contact@excelsecu.com

Phone:(+86) 755-86530330

Consult now
LINKS: OTP Token Java Card OTP Authentication FIDO Security Key OTP Card Fingerprint Key Biometric Card PKI Token Bluetooth Fido Key Display Smart Card IoT Payment FIDO2 NFC key IoT Payment Terminal OTP Server Thermal Receipt Printer Desktop Code Scanner Cloud Speaker Payment Sound Box Barcode Scanner QR Code Scanner

© Excelsecu Data Technology Co., Ltd

粤ICP备08039947号 | 粤公网安备44030002005151号 | Site Map

Internet Brand Service: CTM
Products
OTP FIDO Security Key PKI Token Smart Card Smart Card Reader IoT Payment Terminal
Solutions
Financial Solutions Government Solutions Enterprise Solutions Medical Solutions
Support
Download FAQ
CONTACT US
IF YOU WANT TO LEARN MORE OR SPEAK TO A REPRESENTATIVE,PLEASE SEND AN EMAIL
Consult now
LINKS: OTP Token Java Card OTP Authentication FIDO Security Key OTP Card Fingerprint Key Biometric Card PKI Token Bluetooth Fido Key Display Smart Card IoT Payment FIDO2 NFC key IoT Payment Terminal OTP Server Thermal Receipt Printer Desktop Code Scanner Cloud Speaker Payment Sound Box Barcode Scanner QR Code Scanner

©Excelsecu Data Technology Co., Ltd

粤ICP备08039947号 | 粤公网安备44030002005151号 | Site Map

Internet Brand Service: CTM