



More and more banks, credit card companies, and even social media networks and gaming sites are starting to use two-factor authentication. If you’re a little unclear on what it is or on why you’d want to start using it, read on to learn how two-factor authentication can keep your data secure.

越来越多的银行,信用卡公司,甚至社交媒体网络和游戏网站都开始使用两因素身份验证。 如果您不清楚它是什么或为什么要开始使用它,请继续阅读以了解两因素身份验证如何确保您的数据安全。

什么是两层身份验证? (What Is Exactly Is Two-Factor Authentication?)

How-To Geek reader Jordan writes in with a straight forward question:

How-To Geek读者Jordan提出一个直截了当的问题:

I’m hearing more and more about two-factor authentication. I vaguely remember Google making a big deal about it last year, my bank recently offered a free key-ring thing for valued customers, and my roommate even has some sort of app on his phone to keep his Diablo III account from getting hacked. I get that it’s some sort of security tool but what exactly is it and should I be using it?

我越来越听到有关双重身份验证的信息。 我隐约记得去年Google对此进行了大笔交易,我的银行最近为尊贵的客户提供了免费的钥匙圈,我的室友甚至在手机上安装了某种应用程序,以防止他的Diablo III帐户被黑。 我知道它是某种安全工具,但究竟是什么,应该使用它吗?

In order to understand what two-factor authentication is, let’s first take a look at what one-factor authentication is and compare it to both real and virtual models of security.


When you come home from work, pull out your keys, and unlock your back door, you’re engaging in simple one-factor authentication. The door and the lock assembly don’t care if the person holding they key is you, your neighbor, or a criminal that lifted your keys. The only thing the lock cares about is that the key fits (you don’t need two keys, a key and a fingerprint, or any other combination of checks). The physical key is the single confirmation that the person wielding it is allowed open the door.

当您下班回家,拔出钥匙并解锁后门时,您就在进行简单的单因素身份验证。 门和锁具组件并不关心持有钥匙的人是您,您的邻居还是举起您钥匙的罪犯。 锁唯一关心的就是钥匙是否合适(您不需要两个钥匙,一个钥匙和一个指纹或任何其他组合的检查)。 物理钥匙是唯一确认,允许使用该钥匙的人打开门。

The same level of one-factor authentication occurs when you login to a web site or service that simply requires your login and password. You plug that information in and it exists as the only check that you are, in fact, you.

当您登录到仅需要您的登录名和密码的网站或服务时,就会发生相同级别的单因素身份验证。 您插入该信息,它实际上是您唯一的校验。

Assuming nobody ever steals your keys or cracks/steals your password, you’re in good shape. While your keys being stolen is a fairly low risk, virtual security is more complex (and unlike online security breaches. your apartment complex manager, for example, would never accidentally copy all the keys and leave them with your name and address on a street corner).

假设没有人偷过您的钥匙或破解/窃取您的密码,那么您的状态就很好。 虽然您的钥匙被盗的风险相当低,但虚拟安全性却更为复杂(与在线安全漏洞不同,例如,您的公寓大楼管理员永远不会意外地复制所有钥匙,并在街角留下您的姓名和地址。 )。

Security breaches, sophisticated attacks, and other unfortunate but all too real aspects of working and playing in a virtual space necessitate improved security practices including multiple and diverse complex passwords and, when available, two-factor authentication.


What is two-factor authentication and what does it look like for you, the end user? At minimum two-factor authentication requires two out of three regulatory-approved authentication variables such as:

什么是两因素身份验证?对于最终用户来说,它是什么样的? 至少两个因素的身份验证需要三个经监管机构批准的身份验证变量中的两个,例如:

  • Something you know (like the PIN on your bank card or email password).

  • Something you have (the physical bank card or a authenticator token).

  • Something you are (biometrics like your finger print or iris pattern).


If you’ve ever used a debit card, you’ve used a simple form of two-factor authentication: it’s not enough to know the PIN or to physically have the card, you need to possess both in order to access your bank account via the ATM machine.


Two-factor authentication can take on a variety of forms and still meet the 2-of-3 requirement. There can be a physical token, such as those widely used in banking, where an over-the-air code is generated for you. To login you need your username, password, and the unique code (that expired every 30 seconds or so). Other companies skip the custom-hardware route and supply mobile phone apps (or SMS-delivered codes) which provide the same functionality. While not particularly common, you could also use two-factor authentication based on biometrics (such as security an encrypted file via password and fingerprint).

两因素身份验证可以采用多种形式,但仍满足3之2的要求。 可能会有一个物理令牌,例如在银行业中广泛使用的令牌,这些令牌会为您生成空中代码。 要登录,您需要您的用户名,密码和唯一代码(每30秒左右过期一次)。 其他公司则跳过定制硬件路线,并提供提供相同功能的手机应用程序(或SMS交付的代码)。 尽管不是很常见,但您也可以使用基于生物特征的两因素身份验证(例如,通过密码和指纹对加密文件进行安全保护)。

为什么要使用它?在哪里可以找到它? (Why Should I Use It and Where Can I Find It?)

Any time you introduce an additional layer to your security routine, you always have to ask yourself if the hassle is merited. Multi-factor authentication for a muscle car discussion forum that contains no personal information and is in no way linked to your real email or financial information is obviously overkill. Having a second layer of authentication for your credit card or primary email account, however, is just practical—the personal and financial trauma that would result from an identity thief or other malicious entity having access to those things far outweighs the minor hassle of inputting an extra bit of information.

每当您在安全性例程中引入额外的一层时,您总是必须问自己是否值得考虑。 对于不包含任何个人信息并且绝不与您的真实电子邮件或财务信息相关联的肌肉汽车讨论论坛,进行多因素身份验证显然是过大了。 但是,对您的信用卡或主电子邮件帐户进行第二层身份验证是很实际的,因为身份盗用者或其他恶意实体访问这些东西而造成的人身和财务损失远远超过了输入密码的次要麻烦。额外的信息。

Anytime two-factor authentication is available for a system and that system being compromised would cause you significant suffering, you should enable it. Having your email compromised opens you up to other services being compromised as email servers as a sort of master-key for access to password resets and other inquiries. If your bank provides a mobile authenticator or other tool, take advantage of it. Even for things like your roommates Diablo III account—players spend hundreds of hours building their characters and often spend real money purchasing in-game goods, losing all that labor and gear is an awful proposition, slap an authenticator on your account!

任何时候只要一个系统具有两因素身份验证,并且该系统受到威胁将给您带来巨大的痛苦,就应该启用它。 电子邮件遭到泄露后,您就可以将其他服务作为电子邮件服务器而受到破坏,这是一种访问密码重置和其他查询的主键。 如果您的银行提供了移动身份验证器或其他工具,请利用它。 即使是像您的室友《暗黑破坏神III》之类的游戏,玩家也要花费数百小时来建立自己的角色,并经常花费真钱购买游戏中的物品,失去所有的劳力和装备是一个可怕的命题,在您的账户上使用身份验证器!

Not every service offers two-factor authentication, unfortunately. The best way to find out is to dig through the FAQ/support files and/or contact the support staff for the service in question. That said, many companies are vocal about their adoption of multi-factor authentication schemes.

不幸的是,并非每个服务都提供两因素身份验证。 找出问题的最佳方法是浏览FAQ /支持文件和/或联系支持人员以获取有问题的服务。 就是说,许多公司都对采用多因素身份验证方案表示声望。

Google has two-factor authentication both for SMS and with a handy mobile app—read our guide to installing and configuring the mobile app here.


LastPass offers multiple forms of multi-factor authentication including using Google Authenticator. We have a guide to configuring it here.

LastPass提供多种形式的多因素身份验证,包括使用Google Authenticator 。 我们在这里配置它指南

Facebook has a two-factor system called “login approvals” that uses SMS to confirm your identity.

Facebook有一个称为“ 登录批准 ”的两要素系统,该系统使用SMS来确认您的身份。

SpiderOak, a Dropbox like storage service, offers two-factor authentication.


Blizzard, the company behind games like World of War Craft and Diablo, has a free authenticator.

暴雪公司是《魔兽世界》和《暗黑破坏神》等游戏背后的公司, 有免费的身份验证器

Even if it looks like, based on reading the FAQ file of the company in question, they don’t have two-factor authentication, shoot them an email and ask. The more people that ask about two-factor, the higher chance the company will implement it.

即使看起来像,在阅读相关公司的FAQ文件的基础上,他们也没有两因素身份验证,向他们发送电子邮件并询问。 询问两因素的人越多,公司实施它的可能性就越高。

While two-factor authentication isn’t invulnerable to attack (a sophisticated man-in-the-middle attack or someone stealing your secondary authentication token and beating you with a pipe could crack it), it’s radically more secure than relying on a regular password and simply having a two-factor system enabled makes you a much less compelling target.


Know of a service, big or small, that offers two-factor authentication? Sound off in the comments to alert your fellow readers.

是否知道提供两因素身份验证的大小服务? 在评论中提示您,以警告其他读者。

翻译自: https://www.howtogeek.com/117047/htg-explains-what-is-two-factor-authentication-and-should-i-be-using-it/


  • 0
  • 0
    觉得还不错? 一键收藏
  • 0


  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助




当前余额3.43前往充值 >
领取后你会自动成为博主和红包主的粉丝 规则
钱包余额 0


