Skip to main content

Two Factor Authentication(2FA)


Namaste!!

Today’s topic is Two Factor Authentication. It’s also known as 2FA. We all know that multi-layered security is more secure than single layer security.

As processors get faster, password cracking becomes easier and faster. So we need a Multi layer security system to secure our accounts.
If your password gets cracked, 2FA is the new line of defence which restricts the access to your account.

Many websites have an option to enable two factor authentication.
This new account security technique needs two things to authenticate the owner.

  1. Something that only you know (password)
  2. Something that only you have (some kind of code)
You know the password of your account. But now you need “something that you have” to get access to your account, that’s where 2FA kicks in.

You can use any method mentioned below to act as second factor of authentication
  1. Authentication app
  2. SMS (OTP)
  3. Email (OTP)
  4. Preshared codes
  5. Security key (A physical device that looks like a pen-drive)
Let’s see how 2FA is more secure than using only the password. Let’s take an example,
You are not using 2FA and your password got leaked or got cracked, and someone got in your account using that password. That person stole your information or misused your account.
Now, you learnt a lesson and you started using 2FA. Again someone cracked your password and tried getting in, but now the system asks for a OTP or a code to authenticate the person trying to login.
It's unlikely that the hacker has access to your phone or that physical Security key mentioned above. So the hacker “doesn't have” that code. Hence the hacker can't get access to your account even though he has the password.

Now, you know how 2FA works. Now let’s see how you can set or enable 2FA.
You can login into your account and search for 2FA or Two Factor Authentication in settings.
Then you'll see many options like authenticate using SMS or using an Authentication app or Email or Security Key.

Now, to enable authentication using SMS, enter your phone number, you will get OTP to verify your number. Enter that OTP and your 2FA using SMS is enabled.

The procedure for authentication using Email is the same as that of SMS procedure.

Now, let’s see how to set the Authentication app. Authentication app generates a new code every 30 seconds, and that code is already synced with the website server. You have to enter the code you see in your authentication app when asked while you login into your account. There are many authentication apps like Google’s authenticator app, Microsoft’s authenticator app and many more. You can choose any authentication app you trust and like. Now to set authentication using authentication app, select authentication app option shown in the settings of your account and open authentication app of your choice, scan the QR code shown in your settings. Then in your authentication app you will see a code along with a timer. Enter that code in 2FA settings of your account before that timer runs out and your 2FA using Authentication app is enabled.

Now, let’s see how to use and when to use preshared codes or recovery codes.
The recovery or pre shared codes are single use codes. If you lose your phone or can't receive OTP via Email or SMS or you can't use the Authentication app, you have the option to use that recovery or pre shared code to login into your account. To get the recovery codes, headover to the 2FA settings in your account and choose “download recovery codes” option. This will download those codes in a text file. Now you can save that file in your PC or laptop or somewhere safe, also you can write the codes on paper and keep that paper handy but in a safe place. Now you can use any one code from the recovery codes to login into your account.

Now, let’s see how to use Security Key (a physical USB key) to authenticate your login.
First you have to buy a Security Key USB device. Once you get that USB key headover to 2FA settings in your account and select “Set Up USB key option”, now insert the key in USB port on your PC or Laptop which you are using to set up this 2FA.
Then press the physical button on your USB key, this will generate a code and the website will receive that code and will register your USB key on their servers.
Now you have to insert the USB key each time you login into your account.

You can set up the multiple methods on your account to keep redundant authentication
ways. So if you can’t use any particular method, you have other methods to login.

That’s the basic introduction to 2FA and how to use it.
I recommend you to do research before setting up this 2FA because above mentioned method procedures are general steps to enable 2FA. They may vary for different apps and websites. So dont just rely on this article. Two Factor Authentication is very effective and definitely more secure than using just a password.

Disclaimer:
Above information is only for informative purposes.

We are not responsible for any loss caused due to application or use of above information in any form.

The information given above may vary, and it may be incomplete.

This Blog is purely meant for EDUCATION purposes ONLY.

© Copyright 2020 The Cybersec Bot.

Comments

Post a Comment

Popular posts from this blog

Which Word?...Password.

Hi!! So, in the previous article, you read the importance of cyber security. Now let’s see how to apply the security and secure your online and other digital accounts. When you create any online account like Gmail, Facebook, Snapchat or even an online net banking account of your bank, you are asked to set a pin or password. Now I know that you can't proceed without doing so, but many people take these passwords lightly and often set a weak password like the word “password” itself. Even though the website accepts that password, in some cases you are required to meet the password policy requirements. These password policies such as password must be 8 characters or more and it must contain special character like $,#,@ etc. So these password policies are there to make sure that you don't set weak and simple passwords. Many websites show strength meters while creating passwords. Please pay attention to the strength of your password. Now let’s see how to set a strong yet e...
2 comments
Read more

The Era of Cyber!!

Hey guys!! My name is Aditya Natu. I am 20 years old. I am an upcoming cyber security enthusiast. I am currently pursuing Cisco Certifications and some cyber security certifications. I hope you'll find this blog useful. So let's get started. Well, the era of cyber is here since we started using the internet. We almost do everything using the internet. For eg: You want pizza? Order it using the internet. You want to watch movies and TV shows? Use the internet. From net banking to online real time multiplayer games like PUBG and CS:GO, every little thing uses the internet in some form or another. Without the internet we can't live and survive in this modern world. The servers, important documents, many research findings, millions of pages of information, various systems like electric grid, government schemes and services, traffic signal systems, international trade and information exchange, etc depends on the internet. Here is a fact for you: the “Internet” is jus...
7 comments
Read more