How about two-provider authentication? (2PA?) Send codes/links to two confirmed ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		firebones on May 4, 2017 \| parent \| context \| favorite \| on: Ask HN: Google Doc email virus? How about two-provider authentication? (2PA?) Send codes/links to two confirmed but independent accounts (email + Twitter, or Facebook + SMS) and require those to be entered. Probably not anymore secure--and a nightmare to manage. But look to consensus algorithms for authentication ideas.

AstralStorm on May 4, 2017 [–]

Phone is a (slightly) harder target, but Twitter + email is equivalent to just email.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact