Two-factor authentication (2FA) is one of the most important aspects of keeping your online accounts protected. Here are the five best 2FA apps, as well as give some general information about what 2FA is and why it’s important.1. Authy is the best two factor authentication app
What Is Two-Factor Authentication?
Two-factor authentication is a security feature that adds an extra layer of protection to your online accounts
- Instead of using just a single factor to authenticate your identity, like a password, you use two different factors, usually your password and a one-time code sent via SMS or email
- By spreading the risk across two factors, it’s much less likely that an attacker will be able to unlock one of your accounts
How Safe Are Two-Factor Authentication Apps & Devices?
Having 2FA is more secure than not having it, even if the system isn’t totally secure.
- Cyber security is generally an odds game, so the harder you can make it for an attacker to hack your account, the less likely you’ll be to fall victim.
What Makes the Best 2FA Apps?
Two-factor apps use one-time passwords (OTP) as your second factor.
- After turning on 2FA on your account, you can scan a QR code to tie that account to your app.
- Every time you log in, your app will automatically generate a code, which you’ll need to enter to unlock your account.
The Best 2FA Hardware
The earliest forms of 2FA used hardware keys instead of software
- Most devices use the Universal Second Factor (U2F).
- These devices authenticate with a unique hardware token, and they’re generally origin-bound, making them safer overall.
- Even among hardware 2FA devices, YubiKeys are expensive
- They start at $45 for the YubiKey 5 range and go up to $70 depending on the connection and features you want
- There are cheaper options in Yubico’s Security Key line, though they’re not as feature-rich
Authy
For a free 2FA app that does it all, Authy combines all the elements of the above under one roof
- It automatically syncs across devices and works without an internet connection
- Supports Apple Watch and iCloud backups
- Generates codes directly on your device and automatically flushes them every 30 seconds
- Charges businesses a fee for generating tokens
- Unlike Google Authenticator, it does not tie to your Google account, which is good for security but bad for account recovery, and it doesn’t support syncing across devices
Hardware vs Software
Hardware 2FA devices are more secure, even compared to the best two-factor authentication apps
- Most 2FA keys are origin bound, so phishing schemes aren’t a problem
- They’re hardware-based, so the attacker would need physical access to unlock your account
- Keys are expensive and inconvenient
- Support is also a problem
Final Thoughts
You’re better off using any of the options above – hardware or software – than not using 2FA at all.
- Out of the lot, we recommend Authy most. It combines the best elements of the other 2FA apps and is the best option for most people.
andOTP
Open-source, free 2FA app
- Supports any service that supports TOTPs
- Only supports Android
- LastPass Authenticator
- Best if you don’t have a password manager
- Passwordless authentication with Microsoft apps
- Businesses can use a certificate on a device to authenticate a login attempt rather than a one-time password
- You can also lock your app, hiding your 2FA codes and services
Two-Factor Authentication Apps We Don’t Recommend
Any two-step systems that use the same factor twice are problematic
- Although it’s becoming less common, security questions still show up as a strange form of 2FA
- We always recommend lying on these questions, then jotting down your response in a password manager like 1Password