2FA

Two Factor Authentication sounds almost the most boring subject in the world but this is all about protecting your online identify and digital content.

Today your email address and password is used for a lot of stuff. Whether you use Android, IOS, Windowsphone or something else many websites provide the ability to login with the ID and password for one of these services. In addition you may have bought digital products like music, games, videos etc using these ids. You also may have registered your credit card on these services for easy one-click shopping. It's easy and convenient to tie all this together with your email address. It is also a magnet for criminals, scammers and fraudsters. They want your card details or your identity to commit fraud and make money.

So your password is your first line of security. A lot of people use the same one for everything but are put off from remembering complex passwords. The easy way around this is to use a identity management application like Lastpass. Lastpass, along with other programs, can help manage complex passwords and provide extra levels of password security.

However this is not enough. Two factor authentication is a way that your service provider can give you a second layer of security. Typically this involves a single use code or pin. The code only lasts for a limited time and is requested everytime you log in unless the device you use is used 'frequently'. In this latter case you can allow a device not to need two factor authentication every time. However the normal procedure is after entering your password you will be asked to type in a code that is sent to a mobile phone that you have registered. You can also register an app or other programmable device to generate a single use code.

Security should not just be about big corporations looking after your data. It also means protecting your own data and 2FA helps you do that. I recommend this to everyone.

Links

Google Two Factor Authentication

Microsoft Two Factor Authentication

Apple Two Factor Authentication

Comments

Post a Comment

Popular posts from this blog

Powershell Symlink to Onedrive

Image
I have more than one PC. To be precise, and overly pedantic, 3 Windows 10 laptops. All are slightly different and of various ages. One I use with a Windows 10 Insider Build to keep up with the next thing coming down the pipeline. On each, I do a bit of Powershell . Powershell is the latest generation of Windows command line tools. The Linux enthusiast would look down on the Windows command line of whatever generation but Microsoft has always provided command line tools. In the early days MSDOS was a command line OS. It did little but create directories (folders), copy, move or delete files. It ran “command.com” which some said was just a basic file system manager and way of loading programs into memory. It wasn’t difficult to disagree. Developers brought out alternatives to this such as 4DOS , literally “for dos”, by JP Software . They also produced 4NT, which enhance the Windows NT command processor and 4OS2. The latter was for the IBM OS2 Operating System of the late 80s and ea
Read more

Being progressive rather than universal

Image
Microsoft was not short of ambition for its tiled interface and One Windows strategy . Microsoft was doing what no other tech firm had done - uniting mobile to desktop/laptop PCs in one experience. Apple had two OSs available - IOS for phone/tablet and OSX for its desktop/laptop users. They were different and had different interfaces. Google had two OSs - Android for phone/tablet and ChromeOS for its Chromebook devices. Of course, even One Windows doesn't mean exactly the same OS but it does mean components have such similarity that the interface appears the same to users and, with little modification, apps can run on all platforms. Unfortunately, the app platform UWP (Universal Windows Platform) was hobbled from day one. Microsoft had a poor quality application store, ever-changing developer tools and standards and a Store that only worked (on the PC side) for Windows 8 and latterly Windows 10. While people used legacy versions of Windows such as Windows 7 and XP t
Read more

Identity as the new security boundary

 Not so long ago a PC was safe behind a firewall. The idea was that the physical infrastructure of a network would be enough. Anti-virus and anti-malware products sat on PCs to protect users. Then hybrid working came along. Digital nomads who could connect to networks from anywhere. New startups had users connecting to web based applications. People were bringing their own devices, tablets, phones, projectors and so on into the workplace. Security has now started looking at people. Microsoft call this zero-trust. You don’t just trust someone because they can login. You have systems that secure identity itself. There are three steps to identity security.  1.The credentials that give you authorisation. For most people this is an account identity and password. Often the identity is an email address or some public identity. This leaves the account secured by password. The strength and complexity of the password protecting authentication. 2. Authorization is the next step. What you can a
Read more