Hierarchy of 2FA – Why We Don’t Need SMS 2FA

To understand why we don’t need SMS 2FA, we’ll order the factors from least secure to most secure. Password Password + SMS 2FA Password + Authenticator App Unique Password Unique Password + U2F *A unique password is a reasonable length, random, and never reused password. Password – Affected by phishing attacks, credential stuffing attacks, malware, and brute force …

Read moreHierarchy of 2FA – Why We Don’t Need SMS 2FA

Categories FAQ

Password Education Happens At The Sign Up Page

The sign up page is often the only education users get about passwords. Ask any user what they think makes for a strong password and find the response sounds like they’re reading off password requirements. Password requirements on sign up pages have spent years teaching users to make “strong” passwords when they should have been …

Read morePassword Education Happens At The Sign Up Page

Categories FAQ