Skip to main content
  1. Home
  2. Mobile
  3. News

Could two-step verification through texts go the way of the dodo?

Williams Pelegrin
By

nest two step verification
Image used with permission by copyright holder
The number of websites and services using two-step verification to secure accounts has increased over the years — yet the National Institute of Standards and Technology’s latest proposal might put a halt to the verification method.

In its mainstream incarnation, two-step verification (also known as multi-factor authentication and two-factor authentication) works by sending you a one-time code through SMS when logging into one of your digital accounts. In theory, even if someone has your username and password, they cannot access your account without access to your phone. Two-step verification is not the end-all, be-all solution that will forever safeguard your accounts, but it has certainly proven resilient over time.

Recommended Videos

Unfortunately, recent malware like HummingBad and Stagefright shows that folks are finding more ways to remotely access your phone and your messages, thus raising concerns over two-step verification. Furthermore, as Slate points out, services like Skype and Google Voice have become more popular over the years, putting into question how secure transmission protocols used by two-step verification systems are.

Related

As a result, NIST suggests the use of alternative authenticators to ensure the integrity of such systems.

“Due to the risk that SMS messages may be intercepted or redirected, implementers of new systems should carefully consider alternative authenticators,” reads the government agency’s draft.

Based on the language of the draft, NIST wants agencies to avoid making new investments into two-step verification systems that use SMS messages, and instead invest in alternative solutions like biometrics and apps that create one-time codes. However, the agency also warns that the use of SMS messages “may no longer be allowed in future releases of this guidance,” putting into question whether there will be an expiration date on such uses.

Michael Garcia, deputy director of authentication research program NSTIC at NIST, reaffirmed the draft’s language regarding SMS-based two-step verification systems, saying that alternative solutions should be considered if entities are at a point of reinvestment.

“We’re not saying federal agencies drop SMS, don’t use it anymore,” Garcia told Slate. “But, we are saying, if you’re making new investments, you should consider that in your decision-making.”

Overall, NIST’s draft does not mean much for people with digital accounts right now, but do not be surprised if, in time, companies like Google and Apple no longer want to send you one-time codes and, instead, opt for different, more secure methods of accessing your accounts.

Editors' Recommendations

Topics
Williams Pelegrin
Williams Pelegrin
Former Digital Trends Contributor
Williams is an avid New York Yankees fan, speaks Spanish, resides in Colorado, and has an affinity for Frosted Flakes. Send…
The 6 best tablets for kids in 2024
Fire HD 6 Kids Edition

Tablets, which cater to a wide range of purposes, are also excellent devices for children. Younger kids will be able to access educational and entertainment apps with a tactile experience because of the devices' touchscreens. while older kids can use them for their schoolwork and recreational activities. However, not all tablets in the market are designed for children, so to help you decide what to buy, we've rounded up the best tablets for kids of all ages.

There are no limitations to the learning and creativity of children, and a tablet will help them develop their knowledge and skills like no other gadget can. While it's still necessary for parents to guide their kids in maximizing the use of their tablets, it can't be denied that the device has the potential to be a useful tool for your children as they grow up. Buying them one of our recommended tablets below will make sure that they get an appropriate device for their age, as we took into consideration several factors that prioritize your kid's well-being above all else.
The best tablets for kids in 2024

Read more
Visible’s affordable 5G plans just got even cheaper
The Visible logo on a smartphone.

Visible has a new offer that can help you save significant money when switching to its service. Both Visible and Visible+ packages are now available for purchase upfront on an annual basis. These new annual plans are available for new Visible customers starting today, while existing customers will gain access to them this May.

With this new deal, the Visible+ plan costs $395 per year when paid upfront instead of $540 when paid in 12 monthly installments of $45 each. This means you can save $145, which is 26%. That's an incredible savings. When paying upfront for the regular Visible plan, it will cost $275 per year, saving you $25. If you pay for it monthly, the standard Visible plan costs $25 per month (or $300 per year).

Read more
iPhone SE 4: news, rumored price, release date, and more
The Apple iPhone SE (2022) and Apple iPhone SE (2020) together.

While the spotlight always seems to be on Apple’s mainline iPhones, the iPhone SE is a great pick for those who are on a budget. If you want an iPhone that doesn't break the bank, the SE is the way to go.

The original iPhone SE came out in 2016, and then Apple revamped it in 2020 and 2022 by giving it some more modern hardware. The iPhone SE tends to get updated every two or so years rather than annually like the traditional iPhone. This means  that we should see a new iPhone SE 4 this year, but it’s not so cut-and-dried with this particular model.

Read more