Using more than just passwords makes your online accounts much more secure. That’s where two-factor authentication (2FA) apps come in. You can use these to create an extra layer of security in your account and prompt for input. one-time password (OTP) in addition to your usual credentials at login. This prevents hackers from accessing accounts with only stolen passwords.
Some services allow you to send OTP via SMS, but you should always choose the right 2FA app whenever possible. Text messages are unencrypted and phone numbers can be spoofed, making it easy for clever hackers to slip past these tactics. Luckily, there are quite a few good 2FA apps of his to choose from.
Standalone 2FA app
and OTPs
In general, we recommend leveraging open source tools for security. Security audits are easy to conduct as the code is transparent and openly available.As such, our first recommendation and my personal choice for his 2FA manager was and OTPsthe fork of OTP authenticator app with long period of inactivityOpen source apps may not be the best, but they work very well. Data at rest can optionally be encrypted and its local backups can be password protected. andOTP does not offer cloud syncing, so you can rest assured that your OTP is never stored on an unknown and potentially insecure server without your explicit permission. andOTP also stores the secret code you need to use to set up your OTP, so if you need to, you can easily switch to a different he OTP manager without having to go through the setup process for all your accounts again .
Download andOTP from Play Store or F-droid.
Aegis
Aegis is another open source client that is almost identical to AndOTP on the surface, listing OTPs and supporting local backups. However, we highly recommend taking security even further and locking the app with a password or biometrics.This allows you to encrypt at rest using the code AES-256-GCMAs for optics, the app complies with your system’s dark or light settings, and you can add app icons yourself using that app icon pack Or your own symbol (a bit more complicated than other solutions that add icons automatically).
Aegis also lets you access secret codes, export and import to and from other OTP managers, so you’re not tied down if you just want to try it out. Download from Play Store or F-droid.
authoritative
If you don’t care too much about the open source aspect and prefer a 2FA app that syncs automatically and securely via the cloud, Authy might be the service for you. Its cloud backup is protected by his password and SMS-based 2FA system, allowing him to seamlessly sync his OTP codes across multiple devices. The service also offers a desktop app that syncs with your online vault.
Authy is free for individuals. It makes money with corporate customers.That’s why I feel safe Do everything humanly possible to protect your data You can’t afford to lose paying customers to a breach.
Unfortunately, Authy cannot recover the secret code used to set up your OTP. So if you want to switch to another manager, you’ll have to set up all your OTPs again via your account or store them elsewhere. Every time I add it to Authy.
Google Authenticator
If you don’t want to backup or sync your 2FA code at all for security reasons, Google Authenticator might help. It supports normal functionality and runs locally on Android phones. If you switch phones, you can move your credentials via a QR code that you can generate in the app settings. Google Authenticator works automatically based on your system’s theme, but there’s no option to add icons, so depending on how many services you’re protecting, it can be pretty hard to tell them apart.
Password manager with integrated 2FA features
In general, we do not recommend storing 2FA credentials in the same location as passwords. second factor part of the equation. But as long as you’ve taken all the steps you can think of to secure your password manager, it’s nice to have all her credentials in one place, and it encourages more accounts to set up her 2FA. there is a possibility. This is inherently more secure than relying on one factor, and even with this method, we still recommend using the standalone Her 2FA app for your most important accounts.
Here are some recommended solutions for password managers that support 2FA:
Microsoft Authenticator
Microsoft Authenticator started out as a 2FA app, but recently turned into a full-fledged password manager that syncs with Microsoft Edge when you log in with your Microsoft account. If you prefer, you can continue to use Authenticator as your standalone his 2FA app by simply not adding a password. And if you don’t want or need cloud backup, you don’t need to log in with your Microsoft account.
Miki
MYKI is probably not the best-known password manager, but it offers some unique tricks. Your data never leaves the device you own, but your password and his 2FA code are synced via a peer-to-peer setup, requiring less manual effort. This is great if you don’t want to lose the convenience of cross-device sync but are concerned about server security. Our own Rita wrote an extensive review a few years ago, and it’s still to the point.
Bit Warden
The OTP is displayed next to your password and account name.
Bitwarden is a great open source option if you rely on cloud-based software. To use for 2FA codes, / year premium version, This is very fair compared to other password managers. Once everything is set up, you can use Bitwarden to autofill passwords. The OTP code is automatically added to your clipboard, so just paste it.
last pass
LastPass’ approach is a little different than other password managers with integrated OTP support. Security companies offer secondary 2FA apps that should be used alongside your main password manager application. When you log into one of your OTP-protected accounts, you’ll receive a push notification on your phone to seamlessly verify your identity. You can also back up your OTP to your LastPass account.
Please note that LastPass will change how the Free Tier works on March 16, 2021. As such, it’s really a viable option only if you’re prepared to pay $3/month for the Premium version.
Of course, this is just a small selection of 2FA apps, but we found these to be the most secure solutions that are either very affordable or free. Many of the best password managers have built-in support for 2FA codes. Yes, but as mentioned above, it’s always a good idea to keep 2FA and passwords separate.
See which services support 2FA through crowdsourcing twofactorauth.org website.of search results[ドキュメント]Tap the shortcut to see detailed instructions on how to activate the OTP code for the service in question.
Post a Comment
Post a Comment