-
Notifications
You must be signed in to change notification settings - Fork 0
/
2fa.html
147 lines (119 loc) · 6.42 KB
/
2fa.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
<!DOCTYPE html>
<html lang="en">
<head>
<link href='//fonts.googleapis.com/css?family=Source+Sans+Pro:300,400,700,400italic' rel='stylesheet' type='text/css'>
<link rel="stylesheet" type="text/css" href="https://ihommani.github.io/theme/stylesheet/style.min.css">
<link rel="stylesheet" type="text/css" href="https://ihommani.github.io/theme/pygments/github.min.css">
<link rel="stylesheet" type="text/css" href="https://ihommani.github.io/theme/font-awesome/css/font-awesome.min.css">
<link href="https://ihommani.github.io/feeds/all.atom.xml" type="application/atom+xml" rel="alternate" title="Thinking about... Atom">
<meta charset="utf-8" />
<meta http-equiv="X-UA-Compatible" content="IE=edge" />
<meta name="HandheldFriendly" content="True" />
<meta name="viewport" content="width=device-width, initial-scale=1.0" />
<meta name="robots" content="" />
<meta name="author" content="ihommmani" />
<meta name="description" content="How this feature can improve the security of your applications" />
<meta name="keywords" content="Security">
<meta property="og:site_name" content="Thinking about..."/>
<meta property="og:title" content="Two-Factor Authentication"/>
<meta property="og:description" content="How this feature can improve the security of your applications"/>
<meta property="og:locale" content="en_US"/>
<meta property="og:url" content="https://ihommani.github.io/2fa.html"/>
<meta property="og:type" content="article"/>
<meta property="article:published_time" content="2014-02-01 13:09:00+01:00"/>
<meta property="article:modified_time" content=""/>
<meta property="article:author" content="https://ihommani.github.io/author/ihommmani.html">
<meta property="article:section" content="technical"/>
<meta property="article:tag" content="Security"/>
<meta property="og:image" content="">
<title>Thinking about... – Two-Factor Authentication</title>
</head>
<body>
<aside>
<div>
<a href="https://ihommani.github.io">
<img src="https://www.gravatar.com/avatar/b61c1c8bd89ffd6a81e277b408290009?s=210" alt="Thinking about..." title="Thinking about...">
</a>
<h1><a href="https://ihommani.github.io">Thinking about...</a></h1>
<p>Yet another opiniated blog</p>
<nav>
<ul class="list">
<li><a href="https://ihommani.github.io/pages/about.html#about">about</a></li>
</ul>
</nav>
<ul class="tag-cloud">
</ul>
<ul class="social">
<li><a class="sc-twitter" href="http://twitter.com/ihommani" target="_blank"><i class="fa fa-twitter"></i></a></li>
<li><a class="sc-github" href="http://github.com/ihommani" target="_blank"><i class="fa fa-github"></i></a></li>
<li><a class="sc-flickr" href="http://www.flickr.com/photos/chaiyachaiya/" target="_blank"><i class="fa fa-flickr"></i></a></li>
</ul>
</div>
</aside>
<main>
<article class="single">
<header>
<h1 id="2fa">Two-Factor Authentication</h1>
<p>
Posted on sam. 01 février 2014 in <a href="https://ihommani.github.io/category/technical.html">technical</a>
</p>
</header>
<div>
<p><img alt="Login security" src="https://ihommani.github.io/images/FEDTECH_2FA.png" /></p>
<h2>Extra security</h2>
<p>Some applications require extra set of security because if someone get access to it, things can get ugly for you.
After reading this sad yet interesting <a href="https://medium.com/p/24eb09e026dd" title="twitter account stolen">story</a>, I was astonished of how you can put a mess in someone's life by getting access to his/her mail account.
Not only you can change its password, you also can change the password of all applications linked to the hijacked address mail.
For instance you can virtually restart all the password of the associated social media. (e.g: Facebook)</p>
<h2>Two-Factor Authentication</h2>
<p><strong>2FA</strong> try to solve this huge chink by applying a second identification step.
You've surely already experienced 2FA through online paiement. Banks widely use it by sending you a code to your mobile phone to enter it inside the paiement website to finalize the transaction.
Thus, the bank strengthen the identification process by asking you to make a "proof of work" only you can do. Even if the attacker got your credit card numbers he won't be able to get the paiement done without access to your mobile phone.</p>
<p>This useful system is also available in mail clients such as gmail.
I strongly advice you to enable it since it will reinforce the overall security of your mails'access.
In the following section I describe the different steps to enable it in Gmail.</p>
<p>Here a small scheme to illustrate the different steps: <br />
<img alt="2FA principle" src="http://www.assurity.sg/onekey/2fa.gif" title="2fA" /></p>
<h2>HOW-TO</h2>
<p>In your account setting go to the security menu to see a 2-step verification link.... No I'm kidding.
Google explain it better than I do :) . <br />
Here the <a href="https://support.google.com/accounts/answer/180744?hl=en" title="2fa">link</a>.
It's very easy and can be done in a matter of minutes. Doing this can't hurt. <br />
For those who blame the fact to rely on mobile phone, several substitutes are explained. </p>
<p><em>N.B: As you may notice we can use interchangeably "two step verification" and "two-factor authentication"</em></p>
</div>
<div class="tag-cloud">
<p>
<a href="https://ihommani.github.io/tag/security.html">Security</a>
</p>
</div>
<div id="disqus_thread"></div>
<script type="text/javascript">
var disqus_shortname = 'ihommani';
(function() {
var dsq = document.createElement('script'); dsq.type = 'text/javascript'; dsq.async = true;
dsq.src = '//' + disqus_shortname + '.disqus.com/embed.js';
(document.getElementsByTagName('head')[0] || document.getElementsByTagName('body')[0]).appendChild(dsq);
})();
</script>
<noscript>
Please enable JavaScript to view comments.
</noscript>
</article>
<footer>
<p>© ihommani </p>
<p> Powered by <a href="http://getpelican.com" target="_blank">Pelican</a> - <a href="https://github.com/alexandrevicenzi/flex" target="_blank">Flex</a> theme by <a href="http://alexandrevicenzi.com" target="_blank">Alexandre Vicenzi</a>
</p> </footer>
</main>
<script type="application/ld+json">
{
"@context" : "http://schema.org",
"@type" : "Blog",
"name": " Thinking about... ",
"url" : "https://ihommani.github.io",
"image": "",
"description": ""
}
</script>
</body>
</html>