Messente avatar logo

User Authentication and What SMS Has To Do With It

- 5 MIN READ - 26 Jan 2014

Here at Messente we know how important it is to manage authentication within your applications, while keeping the logic clean and possibly automated.

Furthermore the need to improve secure authentication is often behind finding the balance between user-friendly and smart solution.

Traditional approach to security used to rely on using passwords and usernames to authenticate users and, despite the simplicity, also SMS can be an extremely valuable part in your security layer.

Two-factors when and where you need them

You have probably experienced two-factor authentication, also known as 2FA, when you last downloaded and tried one of the popular over-the-top (OTT) messaging app (such as WhatsApp, Viber, Line etc.).

Many of the applications would require more than a single password and two-factor authentication would involve using different factors simultaneously:
– something the user already knows (for example, a chosen password);
– something the user has (for example, a mobile phone);
– something the user gets (for example, a PIN code sent in an SMS message).

Combination of these significantly increases security, while SMS is an easy, reliable and straightforward way to deliver your authentication notifications.

How it works

In a simplified scenario, user enters the mobile phone number into the application’s form, receives authentication PIN code in an SMS message and types it into the application’s form to confirm the identity.

It’s fast. SMS notification is received at your handset in seconds and it won’t get in the way or slow you down.

It’s easy. Users are well familiar with SMS notifications, thus authenticating is straightforward and distinct.

It’s secure. SMS notification is generated and sent via other – non-email nor web – channel and application can compare the originally generated password with the submitted one.

Please give us a shout at messente@messente.com if you wish to share some of your thoughts and ideas on this. As always, thanks for your feedback and stay tuned!

Mārcis Jurisons

Mārcis Jurisons - COO

Marcis is the co-founder and CRO of Messente. He is also responsible for making sure that there is an alignment between company's revenue-related operations, including sales, growth and business development.

Startup Conferences: What’s the point? (Slush 2017)

20 Oct 2017

With Slush coming up in about a month, it’s a good time ponder the purpose of large startup conferences. Many entrepreneurs head to conferences, like Slush, around the world and throughout the year looking for investments from venture capitalists and angel investors, yet there’s a lot more to gain from startup conferences. Think about it: there will be over 17,000 motivated and creative people in one place at one time. Get creative and gain as much as you can out of the experience.

Yuriy Mikitchenko

Yuriy Mikitchenko

The economics behind undelivered, failed SMS messages    

17 Oct 2017

The cost and full impact of undelivered or failed messages isn’t immediately clear. The financial impact is not simply the combination of the failed SMS and the cost to resend the message, which isn’t very much at times. There are other indirect costs that result from undelivered SMS messages that matter from a financial perspective. Let’s take a deeper look into the ripple effect of undelivered messages, which make the reasons behind our focus on SMS delivery quality even more clear.

Here are a few examples.

Uku Tomikas

Uku Tomikas

Fraud and Security: 2FA Considerations for PSD2

10 Oct 2017

The second Payment Services Directive (PSD2) is less than three months away from enforcement. While the regulation’s text is lengthy, a key component of the law is its extended reach in comparison to the first directive. PSD2 applies to all payment service providers and affiliates, including account information service providers and payment initiation service providers. In addition, the law applies when at least one part of the transaction is in the European Union. This means that payment service providers and their affiliates outside of the EU must comply with the law when the payer is in the EU. The additional geographical reach guarantees the same level of security expectations for all EU residents regardless of the location of the payment service provider.

Raili Liiva

Raili Liiva

Start sending messages to

for € N/A

Contact us