What 2FA should I use for my website login and what are the risks of 2FA?
Now I know this website is not for asking for specific software recommendations, but for my website for work purposes (as mentioned in another question,) I feel I need a more secure login protocol than just password- even though the password requires are fairly secure.
I’m not being paranoid, but I’ve weighed up the consequences of if information or logins where stolen or hacked, and I’d rather pay or put in slightly more effort than have that potentially happen.
So I’m thinking Two-factor Authentication. I want to get your opinions on:
If this is a good, secure idea?
What type of 2FA should I implement, e.g. SMS, email, etc.
And finally, are there any major flaws to any (or all in general) 2FA practices that I should avoid?
Any recommendations/opinions will be appreciated- I just don’t know enough about digital security to make a good informed decision into what to do.
PS- is there a tag for 2FA?
