Token and method for personal authentication

A personal authentication token and an authentication method thereof are provided to prevent illegal authentication caused from hacking by performing the authentication with an OTP(One-Time Password) inputted from only the token user as well as a PIN(Personal ID Number) of the user. An authenticator(110) generates the OTP needed for the authentication according to a request of a host terminal connected for personal authentication and determines the authentication by receiving the authentication information from the host terminal. The authentication information is generated from the host terminal by using the OTP received from the user. A display part(120) displays the OTP generated from the authenticator. A controller(130) processes communication with the host terminal, and controls the authenticator and the display part to realize the personal authentication by receiving the OTP displayed in the display part from the user. The host terminal is a PC or a mobile terminal. The controller communicates with the host terminal through a USB(Universal Serial Bus).