THELOGICALINDIAN - Clef a twofactor affidavit platformhas afresh gainedtraction in the Bitcoin amplitude with companies like Koinifyintegrating it to defended their platformToday Clef appear True Logins a new antiphishing mechanism
Phishing is back an antagonist disguises themselves and pretend to be addition website. For example, an antagonist ability use faceboook.com, with three “o’s” so a user thinks they are on a normal, defended website. Then, if the user types in their countersign for the absolute site, the attacker can abduct the user’s account. In fact, phishing attacks have been acclimated to abduct millions of dollars from biting online coffer customers, advance malware to endless abode books, and in some cases access high-level barter and government secrets.
Also read: Hackers Steal 7,170 Bitcoins From Chinese Exchange BTER
To action phishing, Clef’s True Logins issues a different URL to a user’s mobile device, like dogs.getclef.org or cats.getclef.org. Only that URL can be acclimated to accredit the user’s account. If addition is attempting to advance a user’s authentication through a spoofed phishing site, for instance, a artificial URL, Clef will abjure the appeal because it will ascertain the affidavit URL is not valid. So, alike if a user clicks on a phishing articulation or gets bent on a affected site, Clef still protects the user and their account.
With acceptable two-factor solutions like adaptable texting or Google Authenticator, already a user enters the 2FA numbers on a phishing site, an antagonist can about-face about and use those aforementioned accreditation to anon admission that account. In phishing-based scenarios, this about makes two-factor abortive because users are still transmitting accreditation in apparent text.
Clef’s signature beachcomber affidavit adjustment additionally utilizes public/private key technology, the aforementioned that Bitcoiners assurance to defended their bill on the Blockchain, and affidavit is as simple as scanning a affective beachcomber of confined with a mobile device. With Clef, users can also un-authenticate all their sites accidentally from their phone. So, if a user happens to login, and walks abroad from their computer, or forgets to log-out for some reason, Clef signs them out of all their accounts in one touch. With acceptable two-factor authentication, if an annual is larboard logged-in the user would have to appointment anniversary armpit and log out, or delay for the affair to timeout.
For Developers, Clef is as accessible as amalgam an OAuth request. No circuitous backend affiliation or aliment needed. Two-factor requests are free, no amount how abounding you have, and you’ll accept all the allowances of the anti-phishing, distinct sign-out and defended public/private key crypto, with alone a few curve of code. For users, distinct sign-on agency already they accept accurate their device, any Clef armpit can be logged into after re-entering a code. Plus, all sites can be logged out instantly.
Clef currently secures the logins for added than 40,000 websites, a amount that is fast growing as user appeal for a simpler advantage mounts. It is additionally accessible in ten of the above apple languages and will accept updates for both its iOS and Android applications appear soon.
Is it time for added Bitcoin companies to accompany the beachcomber and alpha utilizing the secure, chargeless and accompaniment of the art appearance of Clef? Let us apperceive in the comments!
Images from GetClef.com
