We're excited to announce significant security enhancements to our platform with the introduction of Two-Factor Authentication (2FA) and Passkeys support. These additions provide our users with stronger, more convenient authentication options while maintaining the highest security standards.
Two-Factor Authentication (2FA)
We've implemented industry-standard 2FA using Time-based One-Time Passwords (TOTP), offering multiple secure authentication methods:
- Authenticator Apps: Support for popular authenticator apps like Google Authenticator, Authy, and Microsoft Authenticator
- SMS/Email OTP: One-time passcodes delivered via SMS or email for users who prefer this method
- Backup Codes: Secure backup codes for account recovery, stored with industry-standard encryption
Passkeys Support
In addition to 2FA, we're proud to introduce Passkeys support, leveraging the WebAuthn standard. This modern authentication method offers several advantages:
- Passwordless Login: Sign in securely without remembering passwords
- Biometric Authentication: Use your device's biometric features (fingerprint, face recognition)
- Cross-Device Sync: Seamless access across your devices
- Phishing Protection: Built-in protection against phishing attacks
Enhanced Security Features
To complement these new authentication methods, we've also implemented:
- Device Recognition: Automatic detection of new devices with email notifications
- Session Management: Detailed view and control of active sessions
- Recovery Options: Multiple secure methods to recover access if needed
Getting Started
To enable these security features:
- Visit your account security settings
- Choose your preferred 2FA method (TOTP, SMS, or email)
- Set up a Passkey for passwordless login
- Save your backup codes in a secure location
We recommend enabling both 2FA and Passkeys for maximum security. These features are available to all users and can be managed through your account settings.
Stay secure, stay protected.
