48 results found
-
hide phone number/added security when you look in the privacy settings in your account, you can see the full phone number for your 2FA. Can this be blocked? When changing and entering into privacy, pw and 2fa is enabled again. amazon does this and I feel that they are taking our privacy seriously. 2FA just doesn't do it anymore, esp if you can bypass it the first time
2 votes -
Implement One Time Code by Email When you sign up for a new account you are asked to input a one time code through email.
Please implement the One Time Code for ALL, EXISITING & NEW accounts when logging in.
Context: I do not have an active cell phone, I live in an area that does not receive SMS Text for the login code, therefore I can't use Authy either. I've been trying to log back into my account for about 3 weeks at this point with help from friends, but to no avail it didn't work.
Conclusion: Please implement this into the login system, it…
6 votes -
Provide backup codes for 2FA Also provide other options for 2FA apps not just Authy
161 votes -
An option to disable SMS authentication fallback after enabling Authy. SMS as 2FA is well known to be the least secure of the methods available but still a better option than no 2FA at all, but I suggest an option to disable it as a fallback after having enabled Authy to lessen the security risks to the user account. You could learn from others mistakes such as Reddit's: https://arstechnica.com/information-technology/2018/08/password-breach-teaches-reddit-that-yes-phone-based-2fa-is-that-bad/
119 votes -
add the ability to use a Yubikey or other kinds of usb 2auth devices It would be really nice to use a usb device for 2auth (something like the yubikeys).
212 votes -
Non-Reachable Emails Allot of different websites offer this feature, but, how about making it so that if you somehow in someway can't login to your account after reporting missing credentials, it will offer you the chance to send the email about (e.g resetting your password) to an email that you can access.
7 votes -
Open standard 2FA with QR codes Could we please move away from the Authy only 2FA implementation currently used and provide standard TOTP and QR codes?
This would work much better for people who already have a stack of 2FA accounts in other solutions, remove reliance on a single application, fix issues with support (eg. Windows Phone), remove the need for a phone number (important for younger users I'd imagine) and generally increase flexibility and usability of 2FA for everyone by not locking us into a proprietary implementation.
337 votes -
Support alternative password recovery methods Support: Alternative email addresses
Support: Mobile phone recovery process
Support: Secret Questions recovery3 votes
- Don't see your idea?