Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
N
N
nickname012016-11-20 15:39:48
Malware
nickname01, 2016-11-20 15:39:48

Are there other ways of two-factor authentication?

Many sites and web services offer the use of two-factor authentication (sms) to better secure user accounts.
On the one hand, this is good. But on the other hand, a person "burns" his phone number.
Even if you are not a criminal, it still becomes uncomfortable that someone can very easily figure you out by your phone number.
Are there other ways to two-factor authentication on sites and services other than using sms?
It seems that there are special applications for this. Or do they also involve a phone number?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

7 answer(s)
Report
X
xmoonlight, 2016-11-21
@xmoonlight

The task of two-factor authorization is to protect authorization data from interception. There is a division into 2 independent data transmission channels to prevent possible interception on a single channel.
You can do this:
1. After registration, an HTML page with a JS code (formula) containing a PIN generation formula (based on timestamp, userid, etc.) arrives in the mail. This HTML file can be saved anywhere on any device, preferably without internet access.
At the request of the user, it is possible to bind to subnets or country when issuing a PIN code.
2. Run HTML-ku and get a PIN-code on the screen.
3. Enter it in the field: "PIN".

Report
A
Andrew, 2016-11-20
@OLS

RFC 4226
RFC 6238
both are implemented in the form of phone software, both do not require "shine" the number the
next stage of paranoia - they are the same, but in hardware implementation:
https://yandex.ru/images/search?text=etoken%20otp

Report
D
Dimonchik, 2016-11-20
@dimonchik2013

https://www.authy.com/
https://play.google.com/store/apps/details?id=com....
number both there and there

Report
A
Anton Ulanov, 2016-11-20
@antonsr98

OTP :) and the phone does not burn

Report
B
bnytiki, 2016-11-20
@bnytiki

You can have keys.
But it's inconvenient.
There are special devices with one-time passwords.
But they cost money.
Etc.
You can invent anything.
It's just not very convenient.

Report
D
dhat, 2016-11-20
@dhat

Send code to email.

Report
S
Serdonda, 2016-11-21
@Serdonda

There is such an interesting option - authentication using images
(but I think this is more of a concept)
https://github.com/semaster/2FAuth-Steganography

Similar questions
A
Alexander Krysko2017-07-24 10:41:21
Why is my site redirecting to porn? 3Reply
S
savinov_ao2015-08-17 17:47:13
What kind of virus attacked the wordpress site and how did it get to the hosting? 2Reply
K
Kirill2015-08-26 13:46:00
An ad screen appears on iOS, what could it be? 4Reply
F
Forest092020-01-04 04:11:14
WordPress. Wordfence finds spy code in child theme? 1Reply
L
ligisayan2017-08-23 13:18:30
How to get rid of viral redirects? 0Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question