The Time-Based One Time Password ( PROGRAM TOTP TOKEN ) is a multi-factor authentication scheme that uses a combination of a secret seed password and a dynamic code. It is designed to protect against replay attacks, which occur when criminals record network traffic. Using TOTP, attackers are unable to access a database, website, or other network service unless they possess a valid TOTP.