rinata77 Posted October 10, 2024 Share Posted October 10, 2024 I encountered this situation: I decided to set up two-factor authentication via one-time passwords (TOTP) on my phone, and everything seemed simple, but one time I accidentally reset the time settings, and I had to restore access manually. I wondered how reliable this algorithm is and how it helps with security if the time on the device gets lost. Has anyone encountered this? Maybe there is a way to protect against such cases? Link to comment Share on other sites More sharing options...
melissared Posted October 11, 2024 Share Posted October 11, 2024 Yes, this happens, especially if the device resets the time itself. In your case, using a separate device - hardware totp token, which does not depend on the phone settings, can help. I had a similar situation, and after that I switched to a token that works autonomously and is simply more convenient. Plus, they are not afraid of failures, and they are difficult to hack. Link to comment Share on other sites More sharing options...
tonybil Posted October 11, 2024 Share Posted October 11, 2024 I heard TOTP is very common among large companies. I wonder how effective it is against phishing attacks, when attackers try to find out passwords. I think it is worth reading more about it. Link to comment Share on other sites More sharing options...
Recommended Posts
Please sign in to comment
You will be able to leave a comment after signing in
Sign In Now