Skip to content

Facebook increases high level security with two-factor authentication

    Facebook are really not joking this season and it seems like they are planning more. The widely known Social Website Facebook is bringing in a new level of Security into the system and it is the “two-factor authentication

    At first, it was the Picture security, where you will make your picture your password and after clicking on the images, the next step is your password by doing so, they have already recognize you and now we have this, it looks more interesting.

    Facebook security engineer Brad Hill explained the fear surrounding 2FA to the source that;

    No matter what kind of site you are, you have to deal with the issue that someone will lose their password or their token. We can get you back into your account even if you drop your phone off the boat

    However, the feature is in a limited trial and only available for use with GitHub (starting tomorrow). The tool has been open-sourced and added to Facebook’s bug bounty program so researchers can test it and point out any security vulnerabilities before offering it up to other websites and platforms as a traditional 2FA alternative.

    How it works;

    The security feature addresses the common concern of losing the device tied to your account. For those not familiar with 2FA, rather than just logging in with a password, the platform requires a second piece of authentication — typically a text message sent to your cell phone.

    Losing the device could lock you out of the account as you couldn’t gain the second means of authentication needed to access the service. Granted, there are workarounds, but it’s a legitimate fear that could be detrimental to widespread adoption of 2FA — which is sorely needed.

    Facebook also promises not to share it with third-party websites (aside from those you authorize).

    Hill explains:

    There’s a lot of technical reasons why recovery emails aren’t that secure. Email security doesn’t have the greatest reputation right now. It’s the single point of failure for everything you do online.

    This is great probably, the email identifications is going down.