How Secure is Secure?
Two factor authentication (TFA) is an improvement on the old username + password method of authentication. It adds something-you-have or something-you-are to the password (which is something-you-know).
Something-you-have, something-you-are, or something-you-know. Pick any two, and you have two factor authentication.
In the something-you-have category are things like your mobile phone or a USB device like a Yubikey.
The TFA solutions that use something-you-are would include biometric devices like fingerprint scanners and retina scanners.
Unless you're in charge of launching nukes, you probably don't need a retina scanner, but adding TFA to your email account is an absolute necessity. If your email account is hijacked because someone knows your password, they could rapidly go around to all the websites on which you have accounts and request password resets. Password resets almost always work by sending you an email with a link to set a new password. If they have your email account – they have you.
Here's how Gmail does TFA. You enable TFA by entering your mobile phone number in Gmail settings. While you're in there, turn off POP and iMap access. More on that later.
The next time you log in, enter your username and password as usual, and Gmail will send a random 6-digit number to your phone. Once you enter that, you're logged in. It's very simple.
With this in place, if someone learns your password, it does them no good. They also need your phone. Don't lose it.
There are a few things you need to know about Gmail's TFA:
- It only works if you use the webmail client. If you use a mail application that uses iMap or POP to get mail from Google, those protocols have no facility for TFA.
- You must also turn off POP and iMap access to your Gmail account because otherwise the bad guys will just use one of those to go around your TFA efforts.
- When you set up your account, have Gmail create some emergency codes, print them out and save them in a secure place. They will let you get in if your phone is dead/lost/stolen.
Dialogs offers TFA using either SMS or Yubikey, so if you left your Yubikey at home you can just enter 'SMS' instead and it will send you a text just like Gmail does. Call us (800-707-0106 x:123) or contact us today to learn more about TFA and other security best practices.
Recent Articles
Even Darrin Stephens had a process, we just never saw it.
It takes more than a wiggle of your nose to complete a successful website.
eCommerce can make or break your company.
The rewards outweigh the risks when selling online (because the risks can be managed).
Don't worry if you can't do everything.
Outsourcing to specialists can be very smart business.
Why are websites so &*#% hard to build?
The problem is not the web. The problem is probably you.
Making the right impression is harder than it seems.
You may not even know you're making a negative impression.
How many web experts does it take to screw in a lightbulb?
Finding one person who understands all aspects of web development is nearly impossible.
Some things live up to the hype.
All too often, marketing gets ahead of product development. But sometimes, companies get it right.
How much should a website cost?
People who ask that
question seldom understand why there is no easy answer.
Our customers say it best
Dialogs as a company is simply the best group to work with.
— Pat G.