Secure login with

Two-Factor Authentication

By integrating 2FA into your login process, two independent services are combined for the proof of identity of a user.

Sending SMS is easy to implement and offers an intuitive application to users. In addition to logging in with username and password, the security of the login is increased by a temporary code that is sent via SMS. Nevertheless you should consider potential security risks when choosing SMS as the second factor.

Use the SMS capabilities of sipgate.io to add 2FA to your services login.

User Experience

Increased product quality

Use the security advantages of 2FA to make your product even more attractive for customers. By simply integrating SMS into your 2FA service, you offer your customers the easiest way for a more secure login. The SMS messaging provides a quick and intuitive use.

Security benefits

Protect user accounts

With a 2FA you increase the security of your accounts by integrating a second essential factor into the login process. Through the interaction of knowledge and ownership, you offer your customers greater protection against unauthorized access.

1st factor - The knowledge factor

This factor should already be built into a login process and enables your customers to access their accounts. Normally the user data, consisting of user name and password, are requested here. Another possibility is, for example, to set personal security questions (e.g. „What is the name of the street you lived on first?“) That only the user can answer correctly.

2st factor -The ownership factor

The simplest form of this factor is the key to a lock, which you must physically own in order to open it. In our example, the customer’s smartphone replaces this key – but retains the essential property that it is in the customer’s possession and, ideally, is protected against access by third parties even with additional security measures. With our solution, you can add this ownership factor to your login.

Benefits of SMS

Available immediately

Using SMS is the smallest obstacle for users because it is supported by all cell phones. So there is no need for users to install anything or register for other services.

Proof of identity

Because SMS are linked to a phone number, fake accounts can be reduced, since a phone number is only available with proof of identity.

Guaranteed reception

Ensure the reception of the 2FA codes and prevent the messages from ending up in full inboxes or spam folders.

Security risks

Using SMS as a second factor is still more secure than no second factor at all. Compared to other 2FA methods, SMS provides a lower security standard. This should be considered when choosing your authentication method. We especially do not recommend using SMS for account restoration. You can find a study that gives more in-depth information on the topic here.

Ressources

GitHub Repo

An example on how the implementation of 2FA using SMS works.

Tutorial

Read about how to realize 2FA by using SMS.

SMS Example

Test sending SMS via sipgate.io with your Account.