So while this study didn’t mention 2FA apps specifically, we expect the results would be the same as, if not better than, an on-device prompt.
App-based two-factor authentication is similar in that the second step is generated on the smartphone itself. That’s not bad protection, but Google’s on-device prompt strategy (we’ll cover this later) was even better, blocking 99 percent of bulk phishing attacks, and 90 percent of targeted attacks. The trio found that SMS authentication blocked 96 percent of bulk phishing attacks, and 76 percent of targeted attacks trying to crack into your Google account. In May 2019, Google announced a one-year study it did in partnership with New York University and the University of California, San Diego. That said, SMS authentication is still far better than nothing. If you decide to get your 2FA codes via SMS, for example, the code could potentially be intercepted by hackers, as researchers for Positive Technologies demonstrated in 2017. With that, you can transfer all your codes in less than a minute.2FA isn’t foolproof, however. After verifying your identity, select the accounts you want to export, tap on Next, and then you'll be shown a QR code you need to scan with the Google Authenticator app on your new phone. To transfer your codes, you need to go to Settings > Transfer accounts > Export accounts. That way, even if you get a new phone, you can quickly transfer your one-time passwords in a minute or two. You can also easily transfer your Google Authenticator codes from one device to another.
There are two ways to add an account: by scanning a QR code or manually entering a setup key. It's also easy to set up-you don't need to link it to a Google account to use it. It lists your accounts on its home page, with an animated pie graph showing how much time you have left until your code expires. It's available in both the Google Play Store and Apple App Store, so it would work with almost all smartphones. One of the most basic 2FA apps you can use is Google's own authenticator.
0 kommentar(er)
