SMS-based two-factor authentication may be headed out the door

SMS messaging for two-factor authentication might become a thing of the past. A U.S. federal agency is discouraging its use.

The National Institute of Standards and Technology is pushing for the change. Its latest draft of its Digital Authentication Guideline, updated on Monday, warns that SMS messages can be intercepted or redirected, making them vulnerable to hacking.

Many companies, including Twitter, Facebook, and Google, as well as banks, already use the phone-based text messaging to add an extra layer of security to user accounts.

It works like this: To access the accounts, the user not only needs the password, but also a secret code sent by the company by text message. Ideally, these one-time passcodes are sent to a designated phone number to ensure no one else will read them.

To read this article in full or to leave a comment, please click here

Story added 26. July 2016, content source with full text you can find at link above.

SMS-based two-factor authentication may be headed out the door

More antivirus and malware news?

Ads

Security news

Malware

Security

IT security

About site

Search Terms Tips

Recent New Tips

Recent Posts