AES Encryption Explained: How It Works and Why It Matters
Jun 23, 2026
Generate TOTP secrets and QR codes compatible with Google Authenticator, Authy, and other authenticator apps.
TOTP (Time-based One-Time Password) is an algorithm defined in RFC 6238 that generates one-time passwords using a shared secret key and the current time. It is widely used for two-factor authentication (2FA).
Yes. The generated secret and QR code follow the otpauth:// URI format (RFC 6238), which is supported by Google Authenticator, Authy, Microsoft Authenticator, 1Password, Bitwarden, and all standards-compliant TOTP apps.
160 bits (32 Base32 characters) is the recommended size, used by Google Authenticator and most services. 128 bits is shorter but still cryptographically secure. 256 bits provides extra security but may not be supported by all authenticator apps.
No. Everything runs locally in your browser using the Web Crypto API. The secret is generated using cryptographically secure random values, and TOTP codes are calculated client-side. Your secret never leaves your device.
Blog
Jun 23, 2026
Jun 23, 2026
Jun 23, 2026
Jun 23, 2026
Jun 23, 2026
Jun 23, 2026