Keeping your login details secured is crucial in the world of irreversible cryptocurrency transfers.
You can now authenticate your Newton account using Authy Push Authentication, a method that is significantly more secure than SMS.
The low-down on 2FA
2FA stands for two-factor authentication and acts as a second layer of account protection. While there are a variety of 2FA methods, hardware tokens and authenticator applications like Authy rank among the most secure.
Authy Push Authentication vs. SMS — what’s the big deal?
The SMS method sends authenticator codes via text message. While SMS provides more security than a password alone, it can leave your account vulnerable to SIM swap attacks.
Authy Push Authentication generates an RSA key pair on your mobile device, and then sends the public key to Authy’s servers. When you Approve or Deny an authentication request on your phone, Authy can cryptographically verify that the response came from you and that it wasn’t modified in transit.
This is superior to the more common TOTP/HOTP 2FA method that requires you to enter a code generated by an authenticator application. TOTP/HOTP, while more secure than SMS, is still vulnerable to Man-In-The-Middle attacks — Push Authentication largely eliminates this vulnerability using public key cryptography.
Tap on the notification pertaining to Newton 2FA and tap Approve. You’ll then be redirected to your Newton dashboard.
Want to help us shape the products we build? We're always looking for valuable insight and feedback from our users. If you have features you'd like to see or are interested in joining our user research group, email firstname.lastname@example.org