The HYPR device performs authentication via UAF and Biometric TOTP (See RFC 6238). Each HYPR device contains a TRNG-based secret that is used to generate a TOTP token. When a user swipes their finger and successfully authenticates their biometric signature on the device, the TOTP token generated is then encrypted and transmitted to the device requesting authentication – such as a user’s mobile device or desktop computer. The intermediary device then forwards the encrypted TOTP to a server where the signature and TOTP are verified. If the verification is successful, access is granted. Here’s a diagram of the biometric validation server.