mirror of
https://github.com/privacyguides/privacyguides.org
synced 2024-11-13 22:53:36 +01:00
90831803d0
- Update links for Qubes VPN docs - Update Nitrokey internal link Signed-off-by: Jonah Aragon <jonah@privacyguides.org> Signed-off-by: Freddy <freddy@privacyguides.org> Signed-off-by: Daniel Gray <dngray@privacyguides.org>
76 lines
4.3 KiB
Markdown
76 lines
4.3 KiB
Markdown
---
|
|
title: "Multi-Factor Authentication"
|
|
icon: 'material/two-factor-authentication'
|
|
description: These tools assist you with securing your internet accounts with Multi-Factor Authentication without sending your secrets to a third-party.
|
|
cover: multi-factor-authentication.webp
|
|
---
|
|
|
|
<div class="admonition note" markdown>
|
|
<p class="admonition-title">Hardware Keys</p>
|
|
|
|
[Hardware security key recommendations](security-keys.md) have been moved to their own category.
|
|
|
|
</div>
|
|
|
|
**Multi-Factor Authentication Apps** implement a security standard adopted by the Internet Engineering Task Force (IETF) called **Time-based One-time Passwords**, or **TOTP**. This is a method where websites share a secret with you which is used by your authenticator app to generate a six (usually) digit code based on the current time, which you enter while logging in for the website to check. Typically these codes are regenerated every 30 seconds, and once a new code is generated the old one becomes useless. Even if a hacker gets one six-digit code, there is no way for them to reverse that code to get the original secret or otherwise be able to predict what any future codes might be.
|
|
|
|
We highly recommend that you use mobile TOTP apps instead of desktop alternatives as Android and iOS have better security and app isolation than most desktop operating systems.
|
|
|
|
## Ente Auth
|
|
|
|
<div class="admonition recommendation" markdown>
|
|
|
|
![Ente Auth logo](assets/img/multi-factor-authentication/ente-auth.png){ align=right }
|
|
|
|
**Ente Auth** is a free and open-source app which stores and generates TOTP tokens. It can be used with an online account to backup and sync your tokens across your devices (and access them via a web interface) in a secure, end-to-end encrypted fashion. It can also be used offline on a single device with no account necessary.
|
|
|
|
[:octicons-home-16: Homepage](https://ente.io/auth){ .md-button .md-button--primary }
|
|
[:octicons-eye-16:](https://ente.io/privacy){ .card-link title="Privacy Policy" }
|
|
[:octicons-info-16:](https://help.ente.io/auth){ .card-link title=Documentation}
|
|
[:octicons-code-16:](https://github.com/ente-io/ente/tree/main/auth#readme){ .card-link title="Source Code" }
|
|
|
|
<details class="downloads" markdown>
|
|
<summary>Downloads</summary>
|
|
|
|
- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.ente.auth)
|
|
- [:simple-appstore: App Store](https://apps.apple.com/app/id6444121398)
|
|
- [:simple-github: GitHub](https://github.com/ente-io/ente/releases?q=auth)
|
|
- [:octicons-globe-16: Web](https://auth.ente.io)
|
|
|
|
</details>
|
|
|
|
</div>
|
|
|
|
## Aegis Authenticator (Android)
|
|
|
|
<div class="admonition recommendation" markdown>
|
|
|
|
![Aegis logo](assets/img/multi-factor-authentication/aegis.png){ align=right }
|
|
|
|
**Aegis Authenticator** is a free and open-source app for Android to manage your 2-step verification tokens for your online services. Aegis Authenticator operates completely offline/locally, but includes the option to export your tokens for backup unlike many alternatives.
|
|
|
|
[:octicons-home-16: Homepage](https://getaegis.app){ .md-button .md-button--primary }
|
|
[:octicons-eye-16:](https://getaegis.app/aegis/privacy.html){ .card-link title="Privacy Policy" }
|
|
[:octicons-info-16:](https://github.com/beemdevelopment/Aegis/wiki){ .card-link title=Documentation}
|
|
[:octicons-code-16:](https://github.com/beemdevelopment/Aegis){ .card-link title="Source Code" }
|
|
[:octicons-heart-16:](https://buymeacoffee.com/beemdevelopment){ .card-link title=Contribute }
|
|
|
|
<details class="downloads" markdown>
|
|
<summary>Downloads</summary>
|
|
|
|
- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.beemdevelopment.aegis)
|
|
- [:simple-github: GitHub](https://github.com/beemdevelopment/Aegis/releases)
|
|
|
|
</details>
|
|
|
|
</div>
|
|
|
|
<!-- markdownlint-disable-next-line -->
|
|
## Criteria
|
|
|
|
**Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you.
|
|
|
|
- Source code must be publicly available.
|
|
- Must not require internet connectivity.
|
|
- Cloud syncing must be optional, and (if available) sync functionality must be E2EE.
|