Do we have any alternate solution to replace RSA Security ID for the web-application developed in JAVA-Servlet?
More Details:
The Current application uses RSA Security ID for authentication. Now we are planning to replace "RSA Security ID" technology.
Is there any way to implement this authentication? (Simply db/ldap password are not recommended)
You are generally trying to replace an existing 2 Factor Authentication (2FA) system.
There are quite a few options available. The compromises are between the cost, convenience and security. The Wikipedia article on the topic gives a good run down of the options.
Yes, definitely. But your question, as phrased, does not have a simple answer. Grab the closest CISSP and ask him/her to explain your options.