If you’ve lost your phone, you may be completely locked out of your accounts, requiring you to speak to customer service representatives and prove you are the rightful owner of the account to regain access. Depending on how many accounts you have, this can be a labor-intensive process. You’ll need to manually re-register 2FA for every account on your new device. Apps like Google Authenticator and FreeOTP will help you generate and keep track of those temporary 2FA codes for each of your accounts, so that only you (or whoever grabs your phone) can access them.īut let’s say your phone is lost or stolen. Storing 2FA codes on-device: Less pleasant, but a little more secureĢFA takes many forms, but it most commonly requires something in your possession, such as your phone, or an authentication app. If this doesn’t sound familiar, we have a starter guide for you. We will assume passing familiarity with how to access an account with temporary 2FA codes. This is a tricky decision.Īs journalists work from home and need remote access to accounts, we want to talk about some of the options for accessing 2FA codes locally and remotely, and some of their trade-offs. What if you want to use 2FA while sharing an account with someone else? You can optionally store 2FA codes in the cloud to make them accessible to multiple devices, and anyone on the team, but this may introduce novel security risks. Many news organizations are now highly distributed, and share their accounts with colleagues who may not have access to the same device. We love 2FA because it’s one of the most effective ways that we can protect ourselves and our colleagues in the newsroom.īut 2FA also introduces some novel challenges. Once you’ve enabled 2FA on an account, you’ll be asked to enter both your password and a second piece of information.This second piece of information typically comes in the form of a temporary code (e.g., 422367) accessible only through a device in your possession, like your phone. We call this two-factor authentication (2FA). Your team can do wonders to protect yourselves and your data by requiring a second piece of information beyond your password when logging in.
0 kommentar(er)
