"Authy" or Goole 2FA??

in twofactor •  7 years ago  (edited)

My answer will be very clear and sharp.
Authy why? The answer to this is very simple, you can back up the two-step codes on a cloud without fear of losing the phone in GA 2FA if you lose your phone and you didn't write the 16 string letters and numbers , you just fucked...

If you do not know what 2-step verification is, please go to this video

One of my friends lost his laptop and two-step backup codes, so he could not access the accounts that require 2-step verification. Fortunately, he managed to renew all the codes he had and obtained the private keys

Anyone who maintains Google's two-step verification application must know what it will do if the phone disappears.

I'm looking for a way to back up the Google application but if I have to, I'll go to the Authy app that allows you to scan Google barcodes and back them up on a cloud.

In the days we keep everything on the Internet and our money it is very important to know to back up the two-step code.

A final and unambiguous recommendation.
Authy.
if someone has a way to upload the data of this app ( google 2fa) to cloud and save the codes on a cloud i will be very thanksful if he will put a link below im working on it and if i'll find I will share for SURE!

Authors get paid when people like you upvote their post.
If you enjoyed what you read here, create your account today and start earning FREE STEEM!
Sort Order:  

Wow! this is something new for me and #authy will really help me to understand the things in more better way.

Thanks for letting us know about this @amiramnoam

You always come up with innovation for which i am a huge admirer of you :)

Stay Blessed, Have a nice weekend!

thanks!

Thanks Noam, I'm using Google's method because I use binance and they offered this option so I took it. Do they have the second option? Will have to check it 🤗

For rooted phones you have the option to backup the app on the computer but it isn't the most simple thing in the world to do:
https://android.stackexchange.com/questions/63252/how-do-i-back-up-google-authenticator

authy עובד
על כל מה שגוגל עובד..
מצאתי למכשירים עם root
אני מחפש למכשירים רגילים

אחלה, אתקין אותו :)
ניסיתי לחפש ולא מצאתי עוד פתרונות :( רק העניין עם קוד הגיבוי שאליו התייחסת :/

Totally agree but I will add that it's a shame that Google hasn't already implemented it although there is a big claim and concern from Google Authenticator users community.

I would expect Google of all people to have better way to retrieve 2FA codes, I hope their product team picks this up as soon as possible.

Great content. Google 2FA has been so easy to use I haven't thought of looking for an alternative.

but it's really hard to backup
only if you have the 16 string letters..

I support you until the end very nice post you are right @amiramnoam

Great post! Thanks for that smart and brillient post. Post more. I follow and upvote you.

Always authy since its phone independent. I wish we could have it for steemit.

Thanks for the information, have a nice day.

I discovered this the hard way when I got a new phone and factory reset my old one to give to someone. I made the mistake and assumed that the GA would cloud save like everything else google on my phone

Hey dear @amiramnoam I'm so blessed that I'm the part of steemit where maximum people (seniors) take care of their juniors and the community as well. This is the only Social Media Channel where everyone is connected and serve the community and after that get reward.
Actually this is my 1st ever comment on your posts. And while reading your post I' getting emotional. I mean people are alive in this world who cares the others.
You told us about authy App. No doubt this is a savior of millions of people around the world. My friend has lost his money after losing his cellphone. His 2fa keys and everything was saved in phone.
Anyways I solute your great work and positive thoughts towards common people which is appreciable.

RESPECT

All the best!

I love google

It's great to have something to keep all passwords, but is it safe enough?
Hacking a cloud or an app data base is much easier, and if that app keeps data of lot of users, it makes hacking it much more profitable, guarantees that somebody will try it and might succeed.
Did you think of solution for that?

Please don't backup your codes online!

I think you may be missing the point. 2FA stands for 2 factor authentication. It should not be possible to get your codes recovered from the web because that removes one of the factors of 2 factor authentication!

The 2 factors in 2FA are something you know (i.e. your password) and something you have (in this case, your phone).

If all a hacker has to do is get to your online backup then all he really needs is 1 factor twice! Your password for your backup and then your password for the site he actually want's access to.

If you want to follow the advice posted here, by switching to Authy then; please do so fully informed that you will be compromising your level of security by doing so.

Do the right thing and write your backup codes down on paper with a pen or pencil that way you can store it in a fireproof safe as that kind of backup is still "something you have".
BONUS: if you store your backups in a bio-metric safe (i.e. something you are, fingerprint/DNA/Retina) then the loss of your phone will actually trigger a 3 factor event to retrieve your codes.

This is all especially relevant now because the current preferred attack on digital personalities depends on compromising someones google account in order to retrieve their saved passwords and/or password recovery email address. The vector for this attack is your cell phone providers customer service department. Unless you trust those people to protect your digital currencies/identity with the same vim and vigor that you would, I highly suggest changing your google account recovery phone number so that it's in no way associated with you.

Make it your third cousin's brother-in-law's boss's phone number or something. That way, when you actually lose your password to your google account you can go stand at cousin bob's brother's boss's desk (much to his confusion I'm sure) and receive your recovery phone call. But... if a Black Hat was to gain control of you phone number and attempt to reset your google password... he would be left dumbfound regarding why the phone didn't ring.

It's also a good idea to start lying on all of your recovery questions!!! That way, if Black Bart the social engineer tries to guess your recovery answers he wont be able to just log into Facebook and see that your mom's maiden name is listed on her profile (so her high school chums can find her easier)! When he answers the correct name in an attempt to recover your password... it will simply be wrong.

Precisely!

Thank you very much my dear friend @amiramnoam for sharing this helpful post. have a nice day.

some people in society need to live far away in cold weather??

  ·  7 years ago (edited)

Wow great information, goggle 2FA really secure

learn some new from this video,,

  ·  7 years ago (edited)

Hii @amiramnoam,

useful video shared about Google 2FA, well explained and point out important issue here. about security application. thanks, i think any alternative for google 2FA is much better than it, when you got plz shared.

In the days we keep everything on the Internet and our money it is very important to know to back up the two-step code.

Thank you for the amazing post and i love it

Thanks for the info. Will be taking more secure precautions thaks to your article

it's helpful video, thanks,,

Thank you for the info. Thats not something I had considered when I installed and started using the google authenticator. So needles to say, as I'm reading your post a sense of fear starts to take hold as I begin to imagine the time when something "will" go wrong.
Fortunately, when I was installing the 2fa, in my confusion, I installed the Authy app also. I even went as far as putting the exchange on both Google and Authy. I just tried to sign in using the Authy 2fA and was successful. He breaths a sigh of relief.
I'm relatively new to the space, so the information/learning has been never ending. The amount of stuff I don't know (but should know) is massive. You have just added to the pile, and for that I thank you. I will immediately begin to further educate myself in 2FA contingencies in preparation of the possibility that my device is lost, stolen, or fails. Again, Thanks

Ok I'm scared now. I have a lot of authenticator codes saved in Authy
How do I keep it save if my phone is suddenly dead?

רגע אז אם אני מאבד את הפלאפון עם AUTHY
אני פשוט מוריד מחדש בפלאפון חדש ולוחץ RESTORE
או משהו כזה ?
בדיוק עכשיו עברתי לAUTHY
אני פשוט רוצה להיות בטוח!
תודה!

this is something new for me and #authy will really help me to understand the things in more better way.Thanks for letting us know about this @amiramnoam
have a nice day...
thanks for sharing..

@amirammoan
Wow. This is a pleasant clean rationalization. And thanks for growing one of these useful device.

Great informative post Noam. We all need to be very careful and sensitive to this. Thanks for sharing my friend. Regards Nainaz.
#thealliance

I love your work!!!!!!

** really i love Google 2FA
its very easy , secure !
thanks **

I'm not sure if I want my private information that I want to be very secure floating around on the cloud. You can back-up your Google 2FA 'seed' code however you want - even on the cloud if you choose to do so so I don't see how this argument against Google / for Authy really holds much credence.

Helpful info thanks @amiramnoam

and I am that friend. Ha Ha.

  ·  7 years ago (edited)

Thank you for this important information. All the best to you!