The company said in a press release that 2-factor authentication (2FA) is a key security feature for online accounts that has been largely neglected because of the difficulty and tedious nature of its operation.
Under 2FA, one factor required to authenticate with an online service is typically something a user knows, like a login and password. A second factor is something a user possesses such as a mobile device with an application such as Google Authentication or Authy.
This second factor prevents unauthorized access to an account by an attacker who has the right login and password, but does not have the user’s device. But using the second factor is tedious, requiring copying or typing in a six- to seven-digit code from a 2FA application into the app or website the user is logging into.
Airbitz’s latest version, already available on Google Play and App Store, allows users to enable 2FA with a tap of a button without needing to repeatedly type in a six-digit code on login or backup a 2FA seed. This will link a user’s device to their Airbitz account and not let any new devices authenticate. A user can add further devices by scanning a QR code on the original device that enabled 2-factor authentication. If a user loses their device, they can request to disable 2FA by using their login and password via the Airbitz app on a new device. The company said the request will require a seven-day waiting period during which the user’s previously logged-in device will be sent push notifications to warn them in case of fraud.
Airbitz said it has accomplished this while still maintaining its core focus on Bitcoin autonomy and privacy. Personal information such as email addresses and phone numbers are not needed to use Airbitz’s one-touch 2-factor authentication, and users still retain total control over their Bitcoin with no third-parry able to move their funds.
Logo image: Courtesy of Airbitz