A
software token is a type of
two-factor authentication security device that may be used to authorize the use of computer services. Software tokens are stored on a general-purpose electronic device such as a
desktop computer,
laptop,
PDA, or
mobile phone and can be duplicated. This is in contrast to
hardware tokens, where the credentials are stored on a dedicated hardware device and therefore cannot be duplicated (absent physical invasion of the device).