Aspects of the disclosure relate to providing information security and preventing unauthorized access to secured resources by implementing token-based authentication techniques. A computing platform may receive, from a client computing device, a request to authenticate a user to a user account associated with a client portal provided by a client portal server. In response to receiving the request to authenticate, the computing platform may generate a validation token for the user account. Subsequently, the computing platform may validate the request to authenticate based on the validation token generated for the user account. In response to validating the request to authenticate, the computing platform may generate and send one or more commands directing the client portal server to provide at least one client portal interface to the client computing device. In some instances, receiving the request to authenticate may include receiving a time-based one-time passcode generated by the client computing device.