Messente avatar logo

Secure all accounts with 2FA using a single app

Yuriy Mikitchenko

18 Sep 2017 -

5 min read

Yuriy Mikitchenko

18 Sep 2017

-

2 min read

Messente’s two-factor authentication mobile app is officially here for iOS and Android devices.

Introducing Verigator

After several months of development and beta testing, our development team finalized the full feature version of Verigator, our 2FA app, which can be installed on your device through the Apple App Store or the Google Play store. At no cost, anyone can install Verigator and begin securing all their online accounts today. Frankly, there is no excuse to not be using 2FA on web services like Facebook, your email (Gmail, Outlook/Hotmail, Yahoo, etc.,) GitHub, Twitter, and more. Verigator’s simple UI makes it easy to add accounts and begin using time-based one-time passwords (TOTP) in addition to your username and password. You can find tutorials on enabling 2FA in your online services and adding them to Verigator right in the app (we’re continuously adding more tutorials –more on TurnOn2FA.com if you’re looking for something we don’t have yet.)

Turn on 2FA for my Facebook and Gmail account, why?

Well first, your password is likely weak and you’re probably using the same password across multiple services (most of us are guilty of it.) Second, there are over 4 billion usernames and passwords floating around the internet. Check haveibeenpwned.com to find out if you have fallen victim to breaches over the years –it’s likely you have, especially if you have used services like Adobe, Dropbox, LinkedIn, and Myspace (yes, Myspace matters here.) Lastly, if you’re not yet convinced, the number of breached credentials tracked through haveibeenpwned.com grew 1 billion since I began watching the site in May, so if you haven’t been pwned yet, how will you know when you are?

What’s TOTP?

Time-based one-time passwords are a step up in security from SMS based two-factor authentication, as no data is transmitted, so there is no risk of having a PIN code intercepted. Verigator maintains a secret six-digit code for each online service that changes every 30 seconds, which is synced with the online service when you scan the QR code, or log into an online service that uses Messente’s two-factor authentication API. Only the Verigator install on your mobile device and the online service have the time-based code, and after you use it, it can’t be used again. If the online service is using our API, a push notification will be sent to you device if you’re on a data network, however, the PIN code itself is not transmitted as the push notification simply gets you to open Verigator or glance at the code without opening the app (we’re making it as easy as possible for everyone to turn on 2FA and start using it.)

Rundown of Verigator

Verigator’s user interface makes it easy to use, as it’s clean and intuitive, and we’re continuously improving on the app. However, here’s a bullet-pointed list of what to expect.

If you’re running an online service and would like to improve security, contact us, and we’ll get you set up with our 2FA API.

Try Verigator and leave us a review in Google Play or the App Store

The second Payment Services Directive (PSD2) impact: Read the full report.


Yuriy Mikitchenko

Head of Marketing

A transplant from the United States, Yuriy brings his marketing know-how to Messente. His background is in B2B marketing and sales, working with tech corporations and startups in the Portland, Ore. and Seattle, Wash. area. Now he's giving Estonia a fresh perspective on overall marketing.




We're here to help you connect with your customers. Let's start talking.

Email again:

Further reading

How we do it: Supporting a culture of growth

14 Nov 2017

Recently, I’ve had several discussions about company culture. And here’s a common question: How do you build a...

Lauri Kinkar

2 min read

This is an opportunity. Take advantage of it.

07 Nov 2017

In today’s world, it feels like the technology changes faster than we can keep up. As technology becomes...

Raili Liiva

2 min read

Scrub customer databases and make SMS more effective

31 Oct 2017

It’s often that we are asked, “what is your average delivery rate in (fill in the blank) country?”...

Margus Sütt

2 min read

Startup Conferences: What’s the point? (Slush 2017)

25 Oct 2017

With Slush coming up in about a month, it’s a good time ponder the purpose of...

Yuriy Mikitchenko

2 min read