Password management service LastPass has embraced two-factor authentication (2FA) with a new app. Called LastPass Authenticator, the app uses a time-based one-time password (TOTP) to verify the identities of users.
It’s a valuable extra layer of security for a system dealing with highly sensitive data. LastPass’s main function is essentially to store a user’s various passwords – which can reach quite a high number – under one master password; it also features autofill functionality and can be used to generate new passwords. As such, that one password vault should have sophisticated security, and to that end LastPass’s new 2FA system should be very helpful.
Once a user downloads LastPass Authenticator to her mobile device and activates it, she’ll be prompted to scan a bar code generated on the LastPass site using her device’s camera. From there, she’ll get ‘verify’ prompts sent to her device via push notifications anytime she – or anyone else – tries to log in to her LastPass account.
The app is available on Android, iOS, and Windows, and given that Lifehacker has called it the most popular password management app, it could extend 2FA security to a great number of users.