How Secure is Secure?

– Charlie Brown 1 May 2014

two factor authentication security

Two factor authentication (TFA) is an improvement on the old username + password method of authentication. It adds something-you-have or something-you-are to the password (which is something-you-know).

Something-you-have, something-you-are, or something-you-know. Pick any two, and you have two factor authentication.

In the something-you-have category are things like your mobile phone or a USB device like a Yubikey.

The TFA solutions that use something-you-are would include biometric devices like fingerprint scanners and retina scanners.

Unless you're in charge of launching nukes, you probably don't need a retina scanner, but adding TFA to your email account is an absolute necessity. If your email account is hijacked because someone knows your password, they could rapidly go around to all the websites on which you have accounts and request password resets. Password resets almost always work by sending you an email with a link to set a new password. If they have your email account – they have you.

Here's how Gmail does TFA. You enable TFA by entering your mobile phone number in Gmail settings. While you're in there, turn off POP and iMap access. More on that later.

The next time you log in, enter your username and password as usual, and Gmail will send a random 6-digit number to your phone. Once you enter that, you're logged in. It's very simple.

With this in place, if someone learns your password, it does them no good. They also need your phone. Don't lose it.

There are a few things you need to know about Gmail's TFA:

  • It only works if you use the webmail client. If you use a mail application that uses iMap or POP to get mail from Google, those protocols have no facility for TFA.
  • You must also turn off POP and iMap access to your Gmail account because otherwise the bad guys will just use one of those to go around your TFA efforts.
  • When you set up your account, have Gmail create some emergency codes, print them out and save them in a secure place. They will let you get in if your phone is dead/lost/stolen.

Dialogs offers TFA using either SMS or Yubikey, so if you left your Yubikey at home you can just enter 'SMS' instead and it will send you a text just like Gmail does. Call us (800-707-0106 x:123) or contact us today to learn more about TFA and other security best practices.

Recent Articles

You really should wrap that rascal.
If you’re not doing ecommerce, should you care about HTTPS?

Get off my lawn, you snot-nosed hooligans!
A cranky codger attitude will kill your business.

Sell! Sell! Sell!
Why your agency's interactive team isn't busy and what to do about it.

Is it the way of the future, or is it a fad?
It's hard to know when to adopt new technology.

Hey! Where is my commercial printer?
I think this internet thing might be catching on.

Securing sensitive data.
If I steal your web server how secure is all that encrypted data on the drive?

Do your websites look like they were built with Legos?
Blocky approximations of the real thing may be trendy in video games, but have no place in professional web development.

If your website is a business necessity, then so is Google.
People who think SEO isn't important are ... well ... I don't know what they are because I can't find them.

Of sailors and webhosts ...
There are three kinds of sailors ...

A secret decoder ring for websites.
Buying a new website is not as mysterious as it may seem.

Viewing results 71 - 80
Page:
1 2 3 4 5 6 7  8 9
Prev  Next

Our customers say it best

The Dialogs Team helped come up with a solution that tackled our highly technical, data-intensive challenges and provided a user-friendly interface on the backend to manage our data.

Ryan M.