AuthPoint password and token storage/generation
Our CFO has concerns with AuthPoint. We have it setup and working for our VPN connections to our main office. The CFO's concern is that the password and the token (AuthPoint app token) are both controlled by WatchGuard and hence a security issue: WatchGuard can recreate a token and a password to allow access to our network. Is there documentation somewhere that explains the security of password storage and token generation? I've looked but haven't found much that describes how the passwords are stored and how token generation happens (the nitty-gritty, not "open the app and point the camera at the QR code" kind of stuff).