LastPass Launches Its Own Two-Factor Authentication App
Popular password manager and vault LastPass has launched a free two-factor authentication (2FA) app that compliments its password manager and vault, bringing added security to users. The application is also designed to be used with “hundreds” of popular applications and websites, including Amazon, Dropbox, Evernote, Facebook and more.
With its launch today, the LastPass Authenticator App is now available for mobile devices across the three prominent platforms – iTunes App Store, Google Play and the Microsoft App Store.
The app will bring the “second” factor of multi-factor authentication via a six-digit real-time code that can be used to gain access to the LastPass vault as well as many other prominent web services and websites who have two-factor authentication enabled as an added security feature for users. In other words, if you’re using Google Authenticator, consider LastPass Authenticator to be similar.
In a statement, general manager and vice president of LastPass, Joe Siegrist stated:
Today, multifactor authentication is far too often limited to security sensitive early adopters and people that have to use it because IT forced them to do so.
That’s the driving goal behind the LastPass Authetnicator: Bring the security benefits of two-factor authentication to the masses, by taking the pain and friction out of the equation [and] creating something that people want to use.
Existing LastPass users can enable and begin using LastPass Authenticator by checking their account settings to enable the authenticator app under “Multifactor Options”. A quick barcode scan later, the application is paired with the user’s account.
From there on in, the app will generate a 6-digit, 60-second code as the “second” factor in a two-factor authentication protocol. Alternatively, users can also approve the automated push notification on their app. The one-time code can also be sent to a user’s smartphone via SMS.
The app is designed to work with all leading consumer and enterprise authentication systems because it is compliant with Time-based One Time Password (TOTP), a cornerstone of the Initiative for Open Authentication (OATH).
LastPass also upgraded and improved on its interface and features with a massive new update at the beginning of 2016, when users saw the service upgraded to LastPass 4.0
Source | Hacked