2FA: Two Factor Authentication and the app Google Authenticator | Everything Else Forum | Forums: Ask the Geeks!

Please ask your questions here (not in email) – we promise to respond here, no such promise with email. This is a benefit of membership. Here’s info  on how to post to this Q&A Forum.

You must be logged in as a Premium Member to Ask the Geeks a question. All are welcome to freely browse the Forums.

Avatar
sp_LogInOut Log In
Lost password?
sp_Search Search
Advanced Search
Advanced Search
Forum Scope


Match



Forum Options



Minimum search word length is 3 characters - maximum search word length is 84 characters
sp_Search Search
Go to Bottom
sp_TopicIcon
2FA: Two Factor Authentication and the app Google Authenticator
March 2, 2018
1:11 pm
Avatar
Tom McIlwain
Member
Members
Forum Posts: 6
Member Since:
July 25, 2016
sp_UserOfflineSmall Offline
Go to Top
1sp_Permalink sp_Print

Hi Chris and Jim,

Most of us are aware of the benefit of 2FA, but I’ve just become aware of the downside: Your phone account (carrier) could be hacked and 2FA SMS messages intercepted and used.

I’ve just read about the app Google Authenticator (and there are several other similar apps available). It appears that it is a piece of software on your phone that will replace having to get SMS messages for those companies that accept it. It seems slightly more secure.

It evens seems the government NIST (National Institute of Standards & Technology) has removed it’s approval of standard SMS based 2FA.

How about your opinion?

Thanks

Tom

March 2, 2018
3:04 pm
Avatar
MrGeek
Admin
Forum Posts: 452
Member Since:
November 3, 2009
sp_UserOfflineSmall Offline
sp_UserWebsite sp_Twitter sp_Facebook
Go to Top
2sp_Permalink sp_Print

Hi, Tom.

2FA does have flaws, but it’s still better than not using it.

I’m using the Google Authenticator on my Android for another level of protection.

I see where carriers are working on newer, more secure authentication processes. Here’s one article: https://www.engadget.com/2018/…..ntication/

Google recommends carrying extra security codes you get from your security settings whenever you travel, at least. They will work even if you don’t have a data connection.

For higher security, you can get a physical USB device (key) you plug into a computer for access that bypasses the SMS altogether. That seems like overkill for my situation, but I can see plenty of places it would be advisable.

Helping Travelers to Plan, Preserve, and Share their Travels

March 2, 2018
4:42 pm
Avatar
Tom McIlwain
Member
Members
Forum Posts: 6
Member Since:
July 25, 2016
sp_UserOfflineSmall Offline
Go to Top
3sp_Permalink sp_Print

Interesting article Jim.

I just added Google Authenticator to my phone today. From your article it seems that the carriers are maybe trying to get into the authentication bushiness with there own app too!

Well just glad to see progress. Thanks

sp_Feed All RSS
Go to top
Forum Timezone: America/New_York
Most Users Ever Online: 301
Currently Online:
Guest(s) 6
Currently Browsing this Page:
1 Guest(s)
Top Posters:
THOMAS J PARKS: 163
Roxie Marston: 118
Barbara Dalderis: 108
Bob Brown: 96
David Cross: 89
guppy1: 82
Member Stats:
Guest Posters: 402
Members: 1343
Moderators: 1
Admins: 4
Forum Stats:
Groups: 3
Forums: 19
Topics: 2377
Posts: 7837
Newest Members:
Michal Parker, Peggy George, Elaine Phillips-Stork, Delores Miller, Wayne Johnson
Moderators: Jim: 0
Administrators: MrGeek: 452, MrsGeek: 3260, Craig Biles: 0, David Carr: 1