NordPass, a service for managing passwords, has unveiled a new feature called “NordPass Authenticator” for business users. The new solution enables the use of time-based one-time passwords (TOTP) for two-factor authentication (2FA) directly within NordPass, without the need for a separate app. Users seeking to link an account to the password management app must perform a fingerprint or face scan on their device in order to unlock the TOTP when the new security feature is enabled.
According to NordPass, this patented feature is unique in that it combines biometric, possession, and knowledge factors to offer a more secure 2FA solution than other password managers.
One of the advantages of using NordPass’ authenticator feature is that it eliminates the need to download and manage additional apps for 2FA, saving users time and reducing the risk of targeted attacks. It also allows for secure sharing of 2FA-protected accounts between team members, since each user can generate their own two-factor codes using their own biometrics. In addition, NordPass Authenticator uses a stateless system that protects data without storing any sensitive information on its servers.
NordPass Business is a premium password manager for corporate use that provides encrypted vaults, activity logs, a security dashboard, and data breach alerts. It is ISO 27001 and SOC 2 Type 1 certified and has undergone independent auditing by Cure53. It also benefits from the XChaCha20 encryption algorithm and machine learning for autofill functionality.
NordPass Authenticator’s launch comes after NordPass enabled support for passkeys near the start of the year.