Two-Factor Authentication
Fragestellungen:
- How can I secure my account against unauthorized access?
- How to enable two-factor authentication?
- How to secure my account?
Beschreibung:
TYRIOS allows you to secure your account with two-factor authentication. This increases the security of your system and is also legally necessary, according to the GDPR. Here's why and how to do it.
What is two-factor authentication?
Two-factor authentication (2FA for short) is proof of identity-based on two different, independent components. There are several everyday examples:
- At the ATM, you use your bank card and a PIN. Both are independent because, on the one hand, you have a physical card; on the other hand, you have a PIN that shouldn't be on the card. The problem: Both components are independent but constant. So it's enough if I steal both once.
- In online banking, you need a PIN and a TAN. The TAN is generally distributed via SMS or app and only to activated devices if you usually receive the PIN once by post. Both data are therefore independent. In contrast to the ATM, the TAN is always different. It is not enough to steal them once; you need your cell phone. This makes access much more secure.
This approach is also followed in online registration. For example, your username and password could easily be tapped. However, if the second proof of your identity is provided via a second medium - e.g., via your mobile phone - access is more secure because the possible attacker would have to have your username and password and physical access to your mobile phone.
When is the two-factor authentication useful?
With two-factor authentication, you systematically secure access to your user account. Of course, there is a trade-off between convenience and security in practice. TYRIOS tries to push this in favor of a guarantee because you can trust your registered device. This means that two-factor authentication is not required for every access but only every 30 days.
Two-factor authentication, therefore, makes sense in principle, also for end customers, because it systematically prevents someone from using the system on my behalf without authorization and, for example, placing orders.
When is two-factor authentication necessary?
Here it is essential to take a look at the legal situation. The GDPR requires technical and organizational measures (TOM) to protect personal data. So if your user account has access to customer data, two-factor authentication is necessary.
Vorgehen:
Any user in TYRIOS can activate two-factor authentication at any time.
- As a registered user, go to the customer area > My profile
- Click on the Password tab
- Here, you will find the "Two-Factor Authentication" section.
Enable 2FA by ticking "Enable two-factor authentication." - A QR code will now appear.
Scan this with a suitable mobile app. We recommend using the Google Authenticator app. This allows you to use 2FA in other systems as well. - As soon as you have scanned the code, the app will provide you with a 6-digit code. Enter this code for verification on the right side in the "Authentication code" area and confirm your entry. From now on, the authentication is active.
As soon as you log into your account with your access data, you will be prompted to enter your authentication code.
The Google Authenticator app always provides you with an up-to-date code. If you trust the device you are on; you can save this input for 30 days.
Tips und Tricks:
Please note. If you disable 2FA in your profile and later enable it again, or if you reset your authentication, you'll need to start the process again. Therefore, delete the old entry in the Google Authenticator app. It is no longer valid.