Author

Topic: 2FA Question (Read 2160 times)

hero member
Activity: 728
Merit: 500
November 11, 2013, 02:48:48 AM
#7
I do have an "Authentication Code" for BitStamp written down.

Good.

Keep it secret, keep it safe.
sr. member
Activity: 302
Merit: 250
November 11, 2013, 02:27:38 AM
#6
I do have an "Authentication Code" for BitStamp written down.
hero member
Activity: 728
Merit: 500
November 08, 2013, 05:08:00 AM
#5
I assume you use the Google Authenticator as 2FA feature.

In that case, there is no link between your account and mobile phone number / SIM / etc... The only piece of information to regenerate 2FA access to your account is the secret that was provided when you first activated 2FA, either as a string of digits & letters or as a QR code. With it, you can recreate the same 2FA codes on any device, regardless of whether it is networked or not.

Google Auth 2FA basically works by hashing a combination of the aforementioned 2FA-secret with the current time. If you have the secret and the time on your device is reasonably accurate, the codes generated will be valid.
Thanks for the information, I understand now.

I don't remember a code when I installed the app, I do not have one recorded.

You don't get the code when you install the app, you get it when you activate it on a website, e.g. Bitstamp. When you enable GAuth, you're shown a QR code to scan with your phone and a alphanumeric code that you can type in. It is important to write down this alphanumeric code somewhere (and/or make a screenshot of the QR code), because if you lose access to your phone, you'll need that code to restore access on a new phone.

If you haven't written down the code when you activated 2FA, your best course of action is to disable 2FA and then immediately reenable it, which gives you a new code, and then writing that down.

Most websites have some recovery-process for those that have lost access to their 2FA device (and have no backup of the code), but it regularly involves a waiting period or other hassles. Much better to just create a backup.
member
Activity: 112
Merit: 10
Looking to start various enterprises
November 08, 2013, 05:02:45 AM
#4
I assume you use the Google Authenticator as 2FA feature.

In that case, there is no link between your account and mobile phone number / SIM / etc... The only piece of information to regenerate 2FA access to your account is the secret that was provided when you first activated 2FA, either as a string of digits & letters or as a QR code. With it, you can recreate the same 2FA codes on any device, regardless of whether it is networked or not.

Google Auth 2FA basically works by hashing a combination of the aforementioned 2FA-secret with the current time. If you have the secret and the time on your device is reasonably accurate, the codes generated will be valid.
Thanks for the information, I understand now.

I don't remember a code when I installed the app, I do not have one recorded.
Google Authenticator is brilliant, it does not even require an internet connection.

You just have to go to the account, settings, security and then click enable 2FA. It will come up with a QR code you scan with your phone.

Done.
sr. member
Activity: 302
Merit: 250
November 08, 2013, 04:57:42 AM
#3
I assume you use the Google Authenticator as 2FA feature.

In that case, there is no link between your account and mobile phone number / SIM / etc... The only piece of information to regenerate 2FA access to your account is the secret that was provided when you first activated 2FA, either as a string of digits & letters or as a QR code. With it, you can recreate the same 2FA codes on any device, regardless of whether it is networked or not.

Google Auth 2FA basically works by hashing a combination of the aforementioned 2FA-secret with the current time. If you have the secret and the time on your device is reasonably accurate, the codes generated will be valid.
Thanks for the information, I understand now.

I don't remember a code when I installed the app, I do not have one recorded.
hero member
Activity: 728
Merit: 500
November 08, 2013, 02:37:58 AM
#2
I assume you use the Google Authenticator as 2FA feature.

In that case, there is no link between your account and mobile phone number / SIM / etc... The only piece of information to regenerate 2FA access to your account is the secret that was provided when you first activated 2FA, either as a string of digits & letters or as a QR code. With it, you can recreate the same 2FA codes on any device, regardless of whether it is networked or not.

Google Auth 2FA basically works by hashing a combination of the aforementioned 2FA-secret with the current time. If you have the secret and the time on your device is reasonably accurate, the codes generated will be valid.
sr. member
Activity: 302
Merit: 250
November 08, 2013, 02:32:21 AM
#1
I always use 2FA where available.

I travel a reasonable amount to other countries.  Have no reason before to use 2FA when travelling. 

In the next month I will need to use my BTC wallet when away from my home country.

My questions are: 

1.  I assume 2FA is linked to your account, eg. BitStamp, and your mobile phone number.  Correct/Incorrect?

2.  What happens to 2FA when using another SIM and mobile phone number with the same phone in another country?  Will it work the same or do I have to register again?

Thank you for any advice.
Jump to: