Topic: 2 Factor authentication safe ? (Read 125 times)
For my opinion 2FA is the safest thing ever, I recommend using Google Auth, it's the best out there. Imagine it as extra security even if they hack it wich is impossible they still need your password, it's safe for my opinion.
Yes it's very safe
Nothing is unhackable, but it is best to have 2FA on if you can.
If you dont lose your password and you have a reliable devices, then yes.
Yes, very safe.... But Authy app is the best
Yes it is safe but it has a defect we cant access without our mobile since we need to check for otp
You have to think about simplicity as well. If it's to much effort then people won't use it, 2 FA is better than just 1 FA
I think 2 FA is the safest option for authentication as of now... I usually dont trade much on exchanges without a 2FA enabled
2 factor authentication can work will smart contracts, and the world has already started to look that as a solution.. Here is an open source code for the same- https://github.com/Zuchos/tufa
A user can sign up on the application and whenever asked for 2FA code/ token verification, user just need to send token as a data to the Application's smart contract from his Ethereum account. The application reads token that was stored in smart contract and will authenticate the user.
The above will become very difficult to achieve till the ease of use part is not solved by the industry in the Ethereum address ! But seems like a secure and a possible way , overall.
A user can sign up on the application and whenever asked for 2FA code/ token verification, user just need to send token as a data to the Application's smart contract from his Ethereum account. The application reads token that was stored in smart contract and will authenticate the user.
The above will become very difficult to achieve till the ease of use part is not solved by the industry in the Ethereum address ! But seems like a secure and a possible way , overall.
2FA are not the safest option, but what really concerns me is the recovery of those 2 FA set up being the biggest problem... If few weeks later you called in the company and pretended to loose the 2FA device, the recovery process today is very vulnerable to an attack. This needs to be corrected.... I dont kow the best way, but may be use biometrics for recovery ? !
Take the authentication process to the blockchain is the safest bet ! Sony Files Patent for Blockchain-based Multi-Factor Authentication System..
Link here for reference: https://cointelegraph.com/news/sony-files-patent-for-blockchain-based-multi-factor-authentication-system
2FA are not the safest option, but what really concerns me is the recovery of those 2 FA set up being the biggest problem... If few weeks later you called in the company and pretended to loose the 2FA device, the recovery process today is very vulnerable to an attack. This needs to be corrected.... I dont kow the best way, but may be use biometrics for recovery ? !
I was just reading about an old news from 2011 where RSA (security company) said that its SecuID authentication tokens had been hacked. Ofcourse back then we had hardware device for receiving authentication codes, and these days the authentication codes comes on the mobile phone - SMS or phone call or GoogleAuth and other apps..
But the above news from 2011 got me thinking if even Google Auth app for 2FA is safe ? How is 2FA vulnerable to hackers ? Thoughts?
But the above news from 2011 got me thinking if even Google Auth app for 2FA is safe ? How is 2FA vulnerable to hackers ? Thoughts?
Jump to: