We like Authy for reasons we'll discuss shortly. Google and Microsoft both have their own apps, as does security company Sophos game company Blizzard Okta, a provider of enterprise authentication technologies password manager LastPass - there are many to choose from. There are lots of authenticator apps to choose from in the Google and Apple app stores. The authenticator app generates a code that you then type in to confirm that it's you signing in Sounds great. If the key in the access code matches the one the website holds for you, it knows the right person is trying to sign in. The app generates that code by combining the key the website gave you when you first set it up with the current time. Then when you log in again to that website, it asks you to check your app for a code which it displays for a short time, usually 30 seconds. You scan the code and it saves to the app on your phone When you scan that with the app, the key is then saved to your phone.Ī website generates a key which it shows you as a QR code. The site usually shows you that key in the form of a QR code. When you set up an authenticator app with a website, that site generates a secret key - a random collection of numbers and symbols - which you then save to the app. ![]() Tech tips you can trust - get our free Tech newsletter for advice, news, deals and stuff the manuals don’t tell you You can read more about 2FA and why it's a good thing here. How does an authenticator app work?Īuthenticator apps generate a one-time code that you use to confirm that it's you logging in to a website or service they provide the second part of what's called two-factor authentication (2FA). An authenticator app doesn’t rely on your SIM card or the mobile networks. Less likely, but still possible, is what’s called a ‘man-in-the-middle’ attack that intercepts your SMS messages. The most likely is that someone convinces your mobile provider to send them a SIM card for your number, which would mean they could get all your codes and get into your accounts. SMSs are vulnerable to a couple of types of attack. ![]() Why is that safer than an SMS text message? We are fans of authenticator apps at Computing: these take over from SMS text messages the job of sending you a one-time code to confirm that it’s you logging in to an account by generating the code securely on your phone.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |