Advantages of two step authentication

We have often talked on this blog about the importance of creating secure passwords for maintain the security of our computer. One of the problems this entails is that we need to memorize a large number of passwords for all the online services we use. This is why password managers have been invented, which allow us to store them securely in encrypted files.

Now, in the midst of all this challenge of network security, we also have to talk about the dual authentication systems. These are much more effective models than current passwords for accessing websites. Some services such as Dropbox or Linkedin already offer the option of using a double authentication system to access their applications.

What does a double authentication system consist of?

The use of this system is very simple. The user simply enters the usual password and the login of the site. you wish to access. Then, the double authentication system will automatically send you an SMS with a code, which you will have to enter in a new field on the login page. Thanks to this, it is much more difficult for someone to find out your password and gain access to your email or the software you are using.

You should not neglect another aspect that we always insist on: The backups. Generally users are not obsessed with this issue, and only make backup copies of things that are apparently very sensitive.

But in companies it is essential that all the work done, invoices and documentation is kept safe by means of an online backup. This would allow even if any files were to be damaged or lost you can easily recover it through a backup copy that will be made automatically.

The double authentication systems, however, are very useful when working online and protecting customer and company data that we may be keeping on servers outside our company, since the final responsible is the one who has uploaded them to that server, which may not comply with the requirements of the RGPD because it is in another country.

In many companies, the person in charge forgets log out of the e-mails or pages where he/she is logged in. or check the “remember password” option in your browser. This represents a danger for the protection of the data that may be hosted on the page, since we do not know who will use that computer in an oversight. The double authentication system must also be complemented with other security measures to comply with the Organic Law on Data Protection.