What Is Two-factor Authentication And How 2FA Is Deciphered

Aus Fachschaft_Informatik
Zur Navigation springen Zur Suche springen


Application developers are constantly working to improve the protection of user data. But even the most complex password can be cracked. If third parties have physical access to the device, they can open a personal social media account, launch a banking app. In order to secure your data and money you need to enable two-factor authentication. This feature is also known as 2FA.

What is two-factor authentication?

Before we consider how to set up two-factor authentication, we need to take into account the peculiarities of this security mode. 2FA is a way of logging into a personal account that involves confirming access in two different ways. Two-factor authentication what it is know many users of messengers and social networks, since such a method of protection has been used for many years. Some services call this mode "login confirmation".


It is much more difficult to pass such a check. Therefore, its use significantly increases the level of security of the account. When using only a password, the account remains vulnerable. Authorization allows you to change account settings, read messages, transfer funds and perform other actions.

Types of two-factor authentication

Before considering how to enable two-factor authentication, it should be taken into account that there are several types of protection. Each service comes up with its own way, the following options are most common:


Entering a code that comes to your cell phone in the form of SMS or Email. This method of confirming the right of access is considered the most common. The code of two-factor authentication is unique, it is generated automatically every time you try to log in to your personal account. The essence of this method of protection is that without opening a personal account, you cannot change your cell phone number or Email. Attackers will not be able to access multiple devices.
Introduction of a unique code generated in a separate authenticator application. It allows access to be activated even if there is no internet access.
An electronic security key on a physical medium. This type of security is often used by application developers for banks and other financial institutions. It allows quick access by plugging in an electronic key and entering an additional password.
Confirmation of identity using biometrics. This option is very rare in recent times. Such protection is installed by large companies that can afford such protection. Two-stage protection with biometrics is not used by social services and messengers.


One-time password is the most common method of protection. It allows you to increase protection and reduce the likelihood of accounts being hacked.


If the device that should receive the verification message has been lost, there is almost always an additional way to confirm access. If access is lost, you will have to contact support.

In which cases two-factor protection is necessary

The simplest way is to use a password and login. Even with a complex combination, the probability of hacking is high. But it is not always necessary to use complex protection. There are several resources and cases when two-step authentication is required:


Personal accounts of social networks and mail. These resources often have a lot of confidential information. At the same time, they are used to allow access from other devices.
Accounts of banks and other financial institutions. All services that are related to finances are attacked much more often.


The additional application password opens access to all the features of the used service. It is enough only to enter the code in the field provided.


For several years I have worked in cellular shops of two major operators. I have a good understanding of tariffs and see all the pitfalls. I love gadgets, especially on Android.

Ask a question
Question for the expert
Does two-step authentication provide the required protection?

It significantly increases account protection, but if you don't follow the basic rules, you can lose access to your data. For example, the verification code must be sent to a device that cannot be accessed by third parties.

What to do if access has been lost?

The process depends largely on the specifics of the service on which the account was created. Sometimes it will not be possible to restore access again, even if you contact the support service.

Can I use more than two stages of protection?

As a rule, two barriers of protection are enough for safe use of any account. Some services allow you to additionally use a physical key or biometrics.

Can I set up two-step protection myself?

If the service does not provide additional protection, you will not be able to do it yourself. Therefore, it is necessary to use a complex login and password, which are generated by special programs.

How to enable 2FA

The process of enabling additional protection depends largely on the service itself. In many cases, the configuration is carried out according to a similar scheme.

In Google

This service provides high protection. Setting up multifactor access is carried out in several steps:


Google account is opened;
select "Security" in the navigation bar;
"Two-step authentication" and "Get Started" is clicked on the "Sign in to your Google Account" tab;
enter the phone number to which the verification message will be sent.


You need to pass the verification once, after which you will have to do it at regular intervals.

How to connect two-factor authentication in Yandex

The service allows you to customize additional protection. The parameters are set as follows:


account settings are opened;
the "Configure two-factor authentication" section is selected;
in the "Access Control" tab, enter the phone number to which the verification code is sent;
an additional pin-code is created.


There are separate settings for each application. This is due to the fact that the service combines many different functions.

For a site on WordPress

Many sites are created on the "WordPress" engine. In order to protect user accounts, an additional plugin is installed. Most often Google Authenticator is used. Features of the free version:


Access in two stages can be made only to a few users. In the paid version, the number of users increases.
There is support for additional channels. They are used to send verification messages to users.
Using additional questions to verify users.
Redirecting the user based on their role. When a user successfully passes the verification, the specified page opens.
IP Address Blocking. This feature allows you to filter all visitors by blocking specific IPs.
Multilanguage. The settings screen and motorola edge 30 fusion características the user interface can be translated using the engine's in-house tools.
Management of devices included in the trusted list. In the paid version, the number of devices in the white and black lists increases significantly.


You can significantly expand the application's capabilities after subscribing.

How to enable two-factor authentication in VK

The social network allows you to do two-step protection in a few clicks. After going to the official site in the settings of your personal account:


opens the "Security" tab;
"Login Confirmation" is selected and "Connect";
enters the account password, followed by the last 4 digits of the called number;


Enables this protection in the application as well. It is enough to go to the tab "Settings" and "VK Connect account management" and "Security and login". After that, you select login with additional account confirmation.

Instagram

The application under consideration is one of the most popular. To activate multifactor authorization, it is enough to go to "Settings", "Security", "Two-factor authentication".


After that, you choose the most convenient method. A verification code will be sent to the specified number. Authorization takes a few seconds.

In Telegram

The relevance of enabling additional protection in the messenger is constantly increasing. The setting is carried out in several stages:


"Settings" is selected;
click on the "Privacy" and "Security" tabs.


After that, you need to select a new password. It should be set with a prompt. To confirm the operation, you should specify Email, which will receive a verification code to confirm the actions.

On Facebook

You can enable additional protection through a personal account on the site. It is done in several steps:


Select the "Settings and Privacy" section and "Quick Privacy Settings";
the "Use two-factor authentication" function is clicked;


Next, the most appropriate method of account confirmation is selected. The displayed code must be entered into a special field. In a similar way, the configuration takes place.

How to disable two-factor authentication

The process of disabling depends on the service itself. In any case, you need to take into account several points:


To disable two-factor authentication, you need to open a personal account.
When changing the settings, you need to enter the main password and the verification password that will come to the selected device.


Only after that the protection will switch to the standard mode. Such a procedure is often carried out in the case when there are difficulties with logging in. For example, in the case of sending a message that requires the Internet to read.


Disabling two-factor authentication significantly reduces account protection. Therefore, it should be done for a short period of time to solve the problem. In some situations it will not be possible to use the service without additional verification. If you have problems with login, you should contact the support service of the service itself.

Abgerufen von „https://www2.informatik.uni-hamburg.de/fachschaft/wiki/index.php?title=What_Is_Two-factor_Authentication_And_How_2FA_Is_Deciphered&oldid=26605