What you should know about double factor codes
Passwords are one of the weakest points that can exist when logging into a web page or any application. This is because the users themselves use a password that has a low strength or because the system itself is quite fragile against attacks by cybercriminals. That is why double factor codes are very useful when adding a new security barrier with a code that is always changing randomly.
As its name indicates, a second verification data is verified apart from the password. These data are totally random as we have commented previously and above all they are unique. Being something that does not follow a clear pattern and is changing, it is very difficult for it to be finally the target of a hack. It is also important to note that it follows three basic factors: something it knows, something it has, and something it is.
Dependence on third-party apps
This random number code must be obtained through an application that is specialized in this two-factor authentication system. When configuring it, we must enter a QR code that is obtained from the specific web page or service. At the time of logging in, you must immediately enter the digits that you will find in this F2A application. These digits will see how they change and obviously those applications that are 100% secure should always be prioritized.
Likewise, this double factor code can also be requested through a simple text message. Although it should be noted that applications have gained much more strength in recent years since it is easier to consult the code. In addition, you will not have numerous text messages stored in the corresponding application.
Set it up on iCloud Keychain
As we have discussed previously, security should always come first when it comes to two-factor authentication codes. That is why the possibility of making the configuration through the iCloud keychain is opened, whose mission is to store the different passwords that are used to log in. The fact of also adding the double authentication codes to this native keychain, means that you do not have to install different third-party applications to have your logins completely safe and safe from the possible hacks that some platforms may suffer.
Requirements to bear in mind
It is important to know that this configuration cannot be done on all devices. Currently configuration is limited to iPhone and iPad, leaving the Mac keychain off the hook, although in the future it may end up being integrated. In this sense, it should be noted that there are some requirements that are very important to take into account that go beyond the hardware.
Specifically, we are talking about a limitation at the software level. It is essential that both iPhone and iPad always have iOS 15 and iPadOS 15 or a higher version installed. It was from this update that this feature was introduced into the iCloud keychain itself. In addition, when it is done on one of the devices, it will end up extrapolating to the rest as they are always interconnected through the Apple ID.
The configuration in detail
Once all this information is clear, it is time to move on to the configuration of two-factor authentication as such. It is important to bear in mind that you must choose those services in which to perform the two-factor configuration. It is advisable to do it on the main websites such as those shopping services, banking, social networks or emails.
In all these it is quite common that double authentication can be added. That is why the first thing you should always do is track different web security options and select the section dedicated to the F2A configuration. What you should look for is a code or a QR code that will be your account identification so that you can enter it on the keychain itself. Once you have this security information, you will simply have to follow the following steps on your iPhone or iPad:
- Go into Settings.
- Click on the section Passwords.
- Find the website where you want to add the double verification code, if you have previously created it.
- If you had not created it, click at the top on + and fill in all the data.
- In both cases, click Set verification code.
- Choose if you want to configure it by entering the password or by scanning the QR code.
- Scan the code or paste the code that the web platform has offered you.
If everything has worked correctly, you will see how it does not give you any error when entering this data. Also at the moment a six digit numeric code will appear which will be indicative that everything has worked correctly and you have this functionality activated in the native iCloud keychain with the possibility of using it on all compatible devices interconnected with the Apple ID. In this case we remember that the Mac is out of this functionality.
How you will use it when you log in
Once the double verification factor setup is done, it’s time to learn how to use it when you want to log in. At first you must access the web in question or application on a computer, iPhone or iPad. Enter your login information in the normal way with your email and password. Once this is done You will be asked for the aforementioned code. It can be seen that it acts as a second password that grants the maximum possible security.
Once it is requested, you must access the iCloud keychain and go to the specific element where you store the login data for this website or service. You will see under the password section that a six-digit code appears that it varies every 30 seconds. This is the number that you will have to enter on the website in question when the verification code is requested. It is important to be quick because if it ends up changing you will have to copy it again.
At the time of entering the verification code, the session will start normally. Depending on the website where you are going to enter it, it may give you the option to trust your browser or device. In this way, the corresponding code will not be requested again, although this is something that you should always use with great care.