Part II: How to prevent losing 2-factor verification credentials.

Thu, Dec, 29, 2016 @ 11:12 AM

sagiss certified private security.png

In Part I, we discussed various ways to recover from losing two-factor authentication (2FA) credentials. Today, we will talk about how to prevent it from happening. With this method, you'll be able to access codes, tokens and passwords via any device with a master password.

Proactive Backups for Prevention

Like I said in the last post, there are only a handful of actual solutions a user can do if they get locked out of their 2FA. After all, isn't the whole point to make it more secure and difficult for other devices or people to gain access?

What you can do though is be proactive with your 2FA. good way to do this is by backing up your codes/tokens with a password manager like Keeper Security, LastPass 4.0, Dashlane 4 or Sticky Password. Password managers can range anywhere from free to more than $40 for a subscription, depending on your needs as the enduser, and can be accessed via an app or through a web browser.

For this example, let’s talk about Keeper Security and the kind of features it offers. Like the other password managers, Keeper is a 256 AES encrypted password manager that uses a never-stored master password to gain access to all of your other passwords.

NOTE: you MUST remember your master password for this method to work.

 

Key Features

AdobeStock_77230961.jpeg

Keeper has free, individual, family and business grade subscriptions, and they all can use 2FA capabilities. The free version, as with most free password managers, stores your information locally through the app. It's only for a single device and it has email support–and that's about it.

If you are a person who absolutely treats your phone or device like Fort Knox and doesn't let it out of your sight, then this could be the solution for you. But I wouldn't completely recommend it since this is all about how to prevent yourself from getting locked out, especially if your device is lost, stolen or destroyed.

For the rest of us, and those who just want more features, the subscriptions come with well-worth-the-price capabilities. Both the individual and family subscriptions include:

  • Unlimited password storage
  • Unlimited device and sync
  • Unlimited secure cloud backup
  • Unlimited secure record sharing

Other password managers may vary, but generally consist of the same features.

All versions come with 256-bit AES encryption and PBKDF2, which is some of the strongest (as well as the current industry standard) encr

yption out there.

Keepers encrypted cloud backup is hosted on Amazons Web Services (AWS). Backup your passwords; 2FA codes/tokens; and even images, videos and notes.
 
It has a strong password creator that will come up with something other than "password123" (we're looking at you password neglector). With a click of a button and the selection of a few password parameters, Keeper will create a strong password 
shutterstock_276697235.jpg
based on random characters or a phrase. Don't worry about creating an impossible-to-remember password either. There's a handy copy and paste button within the app to help you out.

On top of that, the app will let you sign into your phones apps with those long passwords you just created via the auto-fill, dubbed "KeeperFill." It lets you sign into your apps quickly and securely. You can even login using your one-touch fingerprint scanner (requires fingerprint scanner enabled device).

 

A Business Solution For You

The business subscription has more enterprise type features that you would expect to find in a business version software. Some features included:

  • Admin console
  • shutterstock_377884705.jpgUnlimited devices
  • AD and LDAP Integration
  • Shared folders
  • Auditing and reporting
  • Dedicated secure cloud
  • 24/7 Support

A product like this can go a long way in benefitting you in more ways than one, including that 2FA verification discussed earlier.

This is just one example of a solution and its features, but there are many other password managers out there that do as good a job, or better. Just get the one that suits the needs of you or your business, and remember to be proactive with your security.

 

Further Reading:

Part I: How to recover from losing 2-factor verification credentials.

 

Know of other methods or have a favorite password manager?

Comment below!