Increase Your Business's Security With Multi-Factor Authentication Technology
Multi-Factor Authentication (MFA) is one of the best tools to secure your website and its data from cyber-attacks. MFA is the deadbolt for your house—protecting you against worst-case scenarios. According to Google, multi-factor authentication could reduce overall data breaches by half.
JTech is excited to offer our customers a time-based one-time passcode (TOTP) multi-factor authentication system for their My JTech accounts.
What is Multi-Factor Authentication?
Multi-Factor Authentication (MFA) is a security strategy that requires two or more pieces of evidence (i.e.,' factors') to verify a user's identity during login. In the context of MFA, 'factors' generally fall into three categories—something you know, something you have, or something you are.
Each of Our Customers Already Uses a Username and Password—Things They Know—To Log Into My JTech
Everyone uses a username and password—something they know—to log into My JTech. That's one authentication factor down! The more factors you add, the more secure your website will be. Those factors generally fall into the something you have category—including emails, texts, or time-based one-time passcodes from authenticator apps. In our opinion, linking your account to an authenticator app and generating a TOTP is far and away the most secure and reliable option.
If you can add MFA that uses time-based one-time passcodes to your digital security arsenal, you should.
What Are the Different Types of Multi-Factor Authentication?
There are SMS or email based and authenticator app based MFA options available for most situations. Both add strong layers to your website's security.
SMS or Email Based Multi-Factor Authentication (MFA)
SMS or Email based MFA is the original form of multi-factor authentication. Most of us have had experience with this type of MFA—likely during the login process to a bank or Google account. If you've been sent a one-time passcode (OTP) via text or email to verify your identity, you've used SMS or email based MFA.
SMS or email based MFA, historically referred to as two-factor authentication (2FA), is commonly used by e-commerce, banking, and educational websites. For a user, SMS or email based MFA is a more straight forward process—they get a text or email. However, SMS or email based MFA methods can be inconvenient. Emails go to spam, phone numbers can be entered incorrectly, emails and texts take time to send, etc.
Email/SMS codes are more secure than a username and password by themselves but they rely on third parties—opening you to situations beyond your control.
Authenticator App Based Multi-Factor Authentication
Authenticator app based multi-factor authentication (MFA) is a better solution based on newer technology that generates one-time codes under more secure conditions. These codes are known as time-based one-time passcodes (TOTPs).
My JTech's TOTP Login Step
Time-Based One-Time Passcodes (TOTP)'s are unique, 4-9 digit values generated by your authenticator app that expire after 30-90 seconds. TOTPs are generated from a secret shared key between an authenticator app and a server. Possession of a secret key and the current time both can generate the same code.
Only systems with access to your secret key can generate a time-based one-time passcode for login. So, a dangerous third-party would have a hard time getting ahold of any TOTP your multi-factor authentication system generates.
Multi-factor authentication MFA has become a prominent topic of discussion since the world came to a standstill in 2020. Working, schooling, and socializing all became exclusively digital—leading to an increase in cybercrime.
What Are Authenticator Applications and Why Are They More Secure?
Authenticator Apps are more secure and reliable because they are physically tied to whatever device you've set them up on—avoiding network exposure. Unlike the traditional 2FA practices using texts and email, these codes have no way of being intercepted and automatically regenerate after their short time limit is reached—adding another layer of security.
Adopting authenticator app based MFA methods to secure your site could also mean more potential business. 68% of people today say they want companies to provide an extra layer of internet security!
My JTech's Implementation of Multi-Factor Authentication
JTech has launched authenticator app based MFA that’s easy to use, reliable, and convenient for you and your business—ensuring your data is well protected.
You can setup multi factor authentication for your business using the guide below, or the support article in My JTech!
Authenticator apps paired with My JTech's setup tools make enabling multi-factor authentication easy.
To enable MFA for your My JTech portal follow these steps:
- Download a password manager or authenticator app such as: 1Password, LastPass, Bitwarden, Dashlane, Keeper, Google Authenticator, Microsoft Authenticator, and KeePassXC.My JTech's Advanced MFA Setup Instructions
- Log into My JTech and access your profile settings
- Enter the secret key from My JTech into your authenticator app—most apps include a QR code reader to speed this step up
- Enter the code generated by your authenticator app into My JTech
- Save and exit your profile settings to finish enabling multi-factor authentication
- You're done! Next time you log in, you'll be using authenticator app based MFA
For more detailed information, log into your My JTech account and head to our 'Enabling Multi-Factor Authentication' support article for screenshots and a video walkthrough!