Two-step verification is an additional security control to ensure the identity of the person accessing the user profile, thus preventing malicious use or impersonation. More and more platforms offer this system to guarantee that the accounts are used by their legitimate owners (or in the case of sharing, that the owner is aware of it).
These verification systems make it not enough to just type the password to access an account. This will have to be complemented with a code received in the mobile terminals or with an extra interaction.
Some of the applications that offer this system are Google , Facebook , Instagram , WhatsApp , Twitter , Amazon , Paypal or platforms such as Steam, Battle.net, Uplay, Epic Games or PlayStation Network.
Few applications collect as much personal data as Google accounts , so if two-step verification had to be a priority on any platform, this would be it. From the mobile terminal, opening the Google application itself, just press the icon of our user and then “manage your Google account”. Then a menu will appear with different options, which slide from left to right horizontally, where you have to search for “security” . In the options that appear at the bottom you will find the verification in two steps, after selecting it a browser will open with a small explanation and in which it will be indicated “start”.
At the beginning of the process, it asks about the brand of the mobile device used, then, if sessions are started on other sites such as the computer, it will raise the relevant question. The next step would be to confirm the mobile screen pattern , if it is configured that way. It is difficult to get lost during any of the steps because little by little they guide the user.
After entering the pattern and confirming the login on other devices, the application will approve the login. This is what is known as a simplified two-step verification. Google also offers other options, apart from pressing “yes” on the screen , such as the classic one of receiving an SMS with a code or a call in which a voice will repeat the code to be entered.
Two-step verification was introduced years ago by Twitter, but it required the introduction of a phone number. At present this is no longer necessary, all those accounts of the social network that are not linked can be protected with this type of verification thanks to the fact that the application offers different alternative methods to SMS.
First you have to press the profile photo to display a menu in which the “settings and privacy” option appears, after which you have to select “account” to be able to enter the user-specific settings. From this menu you can change the password , user name and even delete the phone number that was linked, since it is no longer necessary.
To continue towards the verification in two steps, you have to click on “security” , where it will appear with the name of “authentication in two phases”, peace of mind, it refers to the same concept.
The social network offers three methods. The first of all is the “text message” (to choose this option there must be a linked mobile) which consists of a numeric password that will be sent to the mobile number provided via SMS .
The second option would be through an authentication application such as Google Authenticator, Duo or Authy, for which it is necessary to have one of these apps installed and configured on the mobile.
The third and last would be carried out by a security key . To use this method, you need a compatible browser and a USB, NFC, Bluetooth or similar device called a security key.
The steps to follow in the web version are simpler. In the left column you have to click “more options”, from the displayed menu you would mark “configuration and privacy”, then “account” and from there “security”. Like the mobile example, Twitter offers the same three options .
The social network par excellence also has this service. From the app, after pressing three blue stripes, a menu of the account will be displayed. Just click “settings”, “security and login” and ” use two-step authentication “.
Facebook offers various methods, SMS or a third party application (such as Google Authenticator or Duo Mobile) as primary and recovery codes as secondary.
These codes are useful when the phone is not around, for example when traveling. It would be enough to copy them somewhere safe and enter them when the application asks us to log in, each code is for single use .
When two-step verification is activated in this service, any attempt to verify the phone number in WhatsApp must be accompanied by a six-digit PIN that can be set when activating the function. How?
Instead of three white stripes, the messaging application shows three white dots, the purpose of which is to access the user options. After pressing the points, you have to click “settings”, “account” and “two-step verification”.
This option will make it mandatory to enter a PIN when registering the user’s phone number in WhatsApp. After clicking “activate”, the app will ask us to generate a pin. After entering and confirming it, as an alternative (in case the PIN is forgotten) it offers to enter an email address that after confirming, the double verification on the account will be officially activated.
Even belonging to Facebook and being able to have both accounts interconnected , the Instagram system is different and must be activated separately. As in Facebook, from the menu of the three stripes located on the right, you have to press “settings”, then “security” and in the displayed menu, “two-step authentication”.
In addition to the two-step verification service, many of the aforementioned platforms have similar menus. Amazon was not going to be an exception. In this case, the three stripes are on the right but open the same menu, that of user options. In the interface you have to press “my account”, “login and security” and “two-step verification settings”.