2FA provides an extra layer of security to make sure that people trying to gain access to an online account are their legitimate owners.
Besides inserting your email and password, if you have 2FA enabled, an additional verification code will be requested - generated by an authenticator app or received by sms.
To enable 2FA via authenticator app, you can get a free authenticator app on the app store or Google Play, such as Google Authenticator. In your Uphold app, you’ll be given a long code called a Security Key, to be used on your Authenticator App, allowing you to generate authentication codes for your Uphold wallet.
We are also rolling out SMS 2FA. In this case, codes are sent via text message to your phone number.
Uphold uses a Time-based One-Time Password (TOTP) algorithm for 2-Factor Authentication. The TOTP algorithm is an extension of the HMAC-based One-Time Password algorithm (HOTP), generating a one-time password by taking uniqueness from the current time.
TOTP token services rely on a physical device, rather than a phone number. In addition to increased security, TOTP provides benefits that include working without an internet connection and compatibility with a range of applications like Google Authenticator, Microsoft Authenticator, Authy, and password managers like 1Password and LastPass.