Here at Messente we know how important it is to manage authentication within your applications, while keeping the logic clean and possibly automated.
Furthermore the need to improve secure authentication is often behind finding the balance between user-friendly and smart solution.
Traditional approach to security used to rely on using passwords and usernames to authenticate users and, despite the simplicity, also SMS can be an extremely valuable part in your security layer.
Two-factors when and where you need them
You have probably experienced two-factor authentication, also known as 2FA, when you last downloaded and tried one of the popular over-the-top (OTT) messaging app (such as WhatsApp, Viber, Line etc.).
Many of the applications would require more than a single password and two-factor authentication would involve using different factors simultaneously:
– something the user already knows (for example, a chosen password);
– something the user has (for example, a mobile phone);
– something the user gets (for example, a PIN code sent in an SMS message).
Combination of these significantly increases security, while SMS is an easy, reliable and straightforward way to deliver your authentication notifications.
How it works
In a simplified scenario, user enters the mobile phone number into the application’s form, receives authentication PIN code in an SMS message and types it into the application’s form to confirm the identity.
It’s fast. SMS notification is received at your handset in seconds and it won’t get in the way or slow you down.
It’s easy. Users are well familiar with SMS notifications, thus authenticating is straightforward and distinct.
It’s secure. SMS notification is generated and sent via other – non-email nor web – channel and application can compare the originally generated password with the submitted one.
Please give us a shout at firstname.lastname@example.org if you wish to share some of your thoughts and ideas on this. As always, thanks for your feedback and stay tuned!