Definition: A Token is an information security hardware device that is in the possession of a user. The implement is primarily used for authentication and is associated with “something that a user has”.
The security token is used as one part of a multi-factor authentication (recommended by security experts). Some even randomly generate a one-time access number to be entered into the system. Others have electronic information recorded upon them and are read once the device is put into the appropriate access port.
Its Relevance: A business or an organization, to practice due diligence, must have policies that govern the access of information resources. Among the most robust tokens very robust tokens is the device that remains in the possession of the user and must be plugged-in before access is granted.