Oppo Find N2 review: the Z Fold 4 rival we need, but can’t easily buy

Google Authenticator

Google Authenticator is a particularly popular smartphone application that can be used as a token for many two factor authentication (2FA) systems by generating a time-based one time password (referred to as TOTP). With Google Authenticator, the combination of your user name and password along with the single-use code generated by the application allows you to securely authenticate yourself in a way that would be difficult for an attacker to replicate.

That sounds great, but what if you don't have a smartphone? That's the situation that [Lady Ada] recently found herself in, and rather than going the easy route and buying a hardware 2FA token that's compatible with Google Authenticator, she decided to build one herself based on the ESP8266. With the hardware and source documented on her site, the makings of an open source Google Authenticator hardware token are available for anyone who's interested.

Generated codes can also be viewed via serial.

For the hardware, all you need is the ESP8266 and a display. Naturally [Lady Ada] uses her own particular spin on both devices which you can purchase if you want to create an identical device, but the concept will work the same on the generic hardware you've probably already got in the parts bin. Software wise, the code is written in CircuitPython, a derivative of MicroPython, which aims to make microcontroller development easier. If you haven't tried MicroPython before, grab an ESP and give this a roll.

Conceptually, TOTP is relatively simple. You just need to know what time it is, and run an SHA1 hash. The time part is simple enough, as the ESP8266 can connect to the network and get the current time from NTP. The calculation of the TOTP is handled by the Python code once you've provided it with the "secret" pulled from the Google Authenticator application. It's worth noting here that this means your 2FA secrets will be held in clear-text on the ESP8266's flash, so try not to use this to secure any nuclear launch systems or anything, OK? Then again, if you ever lose it the beauty of 2-factor is you can invalidate the secret and generate a new one.

We've covered the ins and outs of 2FA applications before here at Hackaday if you'd like to know more about the concept, in addition to previous efforts to develop a hardware token for Google Authenticator.

How To Use Google Authenticator On A Windows PC

Google Authenticator is one of the best applications that you can use to protect your computer. However, there is no official Google Authenticator application for Windows computers. In this post, we will sort this out and see how you can use Google Authenticator on a Windows PC.

In order to use the Google Authenticator, one needs to generate a PIN. This will be a unique code that only you should have access to. Before doing the same, you should download the Google Authenticator app on your phone. The app is available for both Android and iOS, so, go to PlayStore and App Store respectively to download the application. So, go ahead and download one for your device.

Follow the steps given below to generate Google Authenticator Pin or Code.

Open a browser of your choice and navigate to myaccount.Google.Com.

Once you are on the Security page, go to the "How to sign in to Google section".

Click on 2-Step Verification.

Now, click on Get Started.

You will be asked to log in using your password just to protect your account from unauthorized access, do that, and proceed to the next step.

You then have to find the code that will be used for third-party applications and it will be labeled as "Enter your email address and this key (spaces don't matter)".

That's how you can set up Google Authenticator on your computer. However, we would not recommend you do this, instead, simply generate a code from the Google Authenticator application from your phone.

Next up, we are going to see how you can use the Google Authenticator.

Read: Enable Two Step Authentication in Firefox for Windows

Use Google Authenticator in WinAuth WinAuth is an authenticator for Windows computers. It is an open-source application and can use the code generated by Google Authenticator. Follow the steps given below to set up WinAuth using Google Authenticator. Download, install, and open WinAuth on your computer. Click on Add and then click on Google. Once the Google Authenticator screen is presented to you, go to the code that we just generated, enter the code in the given field, and click Verify Authenticator. Now, go back to the security page of Google and click on Next. Enter the code that you get in WinAuth. This will set up the authenticator for you. Do keep in that this is not the application that supports Google Authenticator, services such as Authy and WinOTP also support this security protocol. Read: How to add Work/School accounts to Microsoft Authenticator app Download and set up the Authenticator extension for Chromium browsers You also have the privilege of adding the Authenticator extensions to Chrome, Edge, and other Chromium-based browsers. The Authenticator extension is nothing but a Google Authenticator for browsers. Follow the steps given below to do the same. Go to chrome.Google.Com to download the Authenticator extension. Do keep in mind that this link will work for every single Chromium-based browser. Now, install and add that extension. Once the extension is installed, open it and click on the Pencil icon. You will then be asked to enter an account name and password, do to set up your Google Authenticator. That's it! Also Read: Use Microsoft Authenticator app to Backup and Restore credentials Can I install Google Authenticator on my desktop? Google does not provide a particular application of Google Authenticator for desktop users. However, one can actually generate a code from Google Authenticator using their desktop and a browser of their choice. The only demerit here is that the process to generate the PIN will be a little longer than usual. You can also make use of an extension called Authenticator, which is nothing but a Google Authenticator for Chromium-based browsers. How do I install Google Authenticator on Chrome? It is pretty simple to install Google Authenticator on Chrome. The extension for it is called Authenticator and one can simply add it to their browser to set up. If you want to know more about it, we recommend checking the mentioned above. Read: How to move Microsoft Authenticator to a new phone?

Best Authenticator App Of 2023

The best authenticator apps make it simple and easy to safeguard your online security on your mobile device using two-factor authentication.

Two-factor authentication (2FA) has fast become the standard for online security protection, though it can take many forms, such as hardware tokens such as fobs, SMS, voice-based 2FA, and push notifications. Increasingly, some organizations are shifting towards biometric 2FA. Examples include fingerprints, retina patterns, voice prints, facial recognition, and more. 

Authentication apps offer yet another type of 2FA — software tokens. These are auto-generated one-time passwords (OTP) that expire within 30 seconds. These usually take the form of passcodes. This short timeframe makes it nearly impossible for hackers to grab someone's second credential and use it before it becomes inactive forever. 

The best authentication apps are available on various platforms, with most showing up on Android and Apple devices while still others also accessible through Windows and Mac computers. However, of the dozens of authentication apps available today, only a few are worth considering.

Below we list what we think are the best authentication apps currently available.

We've also listed the best privacy tools and anonymous browsers.

The best authenticator apps of 2023 in full:

Why you can trust TechRadar We spend hours testing every product or service we review, so you can be sure you're buying the best. Find out more about how we test.

(Image credit: 2Stable)

1. Authenticator App by 2Stable

The most impressive authenticator app

Reasons to buy +

Easy to use

+

Biometric authentication

+

Sync and backup option

One of the most impressive authenticator apps on this list, the aptly named Authenticator App by 2Stable, offers a mix of great features. These include biometric authentication, a sync and backup option, and full encryption for whatever 2FA content you decide to store seamlessly on Apple's iCloud service. It's also one of the most straightforward authentication apps on the market. 

The Authenticator App by 2Stable is free for anyone who only plans on storing one or two 2FA accounts. You can keep content across the company's iPhone, iPad, Mac, and Apple Watch apps and take advantage of family sharing, widgets, end-to-end encryption, etc. The freebie option doesn't include backup and synchronization, however. For an annual subscription every feature gets unlocked, including unlimited accounts and the ability to sync content across all platforms. Other features include Face ID and auto-lock. 

2Stable also offers the freemium Photo Vault app that lets you store and protect your photos and videos from outside threats. It's available in the App Store. 

(Image credit: Authy)

2. Authy

The best cross platform authentication app

Reasons to buy +

Cross platform

+

Very price competitive

+

Secure cloud backup

Authy is one of the few authentication apps offered across Windows, Mac, Android, and Apple devices, including the Apple Watch. This makes it an ideal solution for anyone who uses an interesting mix of devices (Windows PC, iPhone; Mac, Android) as part of their daily lives. It's also one of the least expensive. With a free Authy account, you get 100 authentications per month and free support. You'll pay a minimal amount for additional authentications with no monthly commitment. 

Perhaps strangely, Authy requires a phone number to set up a new account, which does feel a little bit invasive. Despite this, Authy provides lots of great 2FA features, including secure cloud backup. 

Authy's app is easy to use, although it could use a design update. Compared to similar apps, it looks old by comparison. Nonetheless, it gets the job done.  For additional security, you can protect your Authy account by using Touch ID, PIN protection, and passwords. 

(Image credit: Duo)

3. Duo

The best authenticator app for enterprises

Reasons to buy +

Corporate-friendly

+

Back up option

+

Supports multiple controls

The most corporate-friendly 2FA authenticator on our list, Duo Mobile is now part of Cisco. As such, it provides developers with essential features like multi-user deployment. For end-users, Duo Mobile covers all of the bases by offering easy, one-tap authentication. It also includes Duo Restore that makes it relatively pain-free to back up Duo-protected accounts, then recover them on new machines. 

Additionally, Duo Mobile supports multiple authentication controls, including push notifications, biometrics, and passcodes. 

For up to 10 accounts, Duo Mobile is free. Beyond this, there's a monthly subscription. Most individuals will probably be able to stick below the free limit, and save some monthly cash. It is worth noting that paid plans do offer more than just the ability to have more accounts.

(Image credit: Google)

4. Google Authenticator

The easiest and most basic authenticator app

Reasons to avoid -

Limited features

-

No online backups

Many folks have a love/hate relationship with Google and if you're in the latter category, you probably want to move on to the next option on this list. For everyone else, say hello to the easiest and most basic authenticator app on the planet. 

With Google Authenticator, you can quickly add an account and use it at will. Beyond this, certain options are missing, including online backups and an Apple Watch app. For a company of Google's size, these omissions are surprising, especially since it offers users quick assess to Google Drive across many platforms. 

If you're an Android user, it's probably wise to skip past Google Authenticator and use the tools available within the operating system on your mobile device. They're much better than the app. For everyone else, Google Authenticator works and it is free. It's also kinda boring, which is something else to consider!

(Image credit: LastPass)

5. LastPass Authenticator

The best for LastPass users

Reasons to buy +

Popular app

+

Free

+

Works with Google

You might already be familiar with LastPass's password app, that's very popular across various platforms. LastPass Authenticator is a small extension of this, and it's free. Like similar options, LastPass Authenticator supports six-digit generated passcodes alongside SMS codes and automated push notifications. 

To activate the app's backup feature, you'll need to set up a free LastPass account. Once you do, Lastpass Authenticator works more smoothly, regardless of the device. 

If you're already a LastPass customer (with a free or paid account), it makes sense to use LastPass Authentication. It works wherever Google Authenticator is accepted. 

(Image credit: Microsoft)

6. Microsoft Authenticator

The best authenticator for organizations and schools

Reasons to buy +

Free to use

+

Good for schools

Reasons to avoid -

Android/iOS compatibility issues

It's probably a close draw on which authenticator app gets used in the wild the most, the one from Google or this one, Microsoft Authenticator. I'll take a guess and say it's the one from the Windows maker. 

Microsoft Authenticator offers 2FA through phone sign-in or code generation. Increasingly, it's become a critical verification tool for organizations and schools alike, although it's also a popular choice with individuals not necessarily tied to a group. 

The Microsoft Authenticator app is free to use across all platforms. However, I suggest not using this with iPhone and Android since the backup process is a tad wonky since the iOS version uses iCloud for backup purposes. Not surprisingly, iCloud isn't accessible to Android users. Otherwise, this is a terrific tool and one you'll see used in various places online.

(Image credit: Step Two)

7. Step Two

The best authenticator app for Apple-only users

Reasons to buy +

Beautiful design

+

iCloud integration

Step Two is another authentication app that's only available on Apple devices. In this case, iPhone, iPad, Mac, and Apple Watch. Like with Duo Mobile, you can add up to 10 accounts for free. With iCloud integration, your accounts are synced across all of your devices. For a one-time purchase of $10 / £9 / AU$15 , you can use Step Two without restrictions. You can also find Step Two on Setapp.

What stands out about Step Two is its beautiful design. The creator, Neil Sardesai, has taken the time to create an authentication app that stands out and is a pleasure to use, regardless of the device. Unfortunately, the same can't be said about other authentication apps like Authy, which need a makeover. 

(Image credit: TOTP)

8. TOTP Authenticator

The best premium authenticator app

Reasons to buy +

Chrome browser extension

+

Google Drive sync

+

Export content

Available on Android and Apple devices, TOTP Authenticator provides has similar features to the solutions above but with some extras. As part of a premium membership you can unlock a Chrome browser extension that makes using the automatically generated codes easier. 

Also, with a premium account, you get cloud sync (through Google Drive), a feature that's free with other apps. If you use a free account, you can still export content from the app to use elsewhere. 

How most authentication apps work

Without fail, one of the easiest ways to begin using 2FA is by using your smartphone's camera and scanning a QR code provided by the company or website. Once you do, the authentication app gets to work by issuing an ever-changing unique code. That code is valid as the second form of identification for just a few seconds before the authentication app refreshes it. 

You only have to scan the QR code once on a device. If you're using sync and backup (like many of the apps below), you probably won't have to scan a QR code during setup on another device. Otherwise, you will. 

The codes are generated using a standard HMAC-Based One-Time Password (HOTP) algorithm developed by the Internet Engineering Task Force (IETF). However, at no time does the IETF gain access to the codes.

Is 2FA all the protection we need?

When 2FA options first arrived, many thought online vulnerability would finally end in the tech world. But, unfortunately, that isn't the case. 2FA, like every other form of online security, isn't 100% secure. Try as they might, a hacker or two will figure out a way to gain access to something they shouldn't. In January 2022, for example, Crypto.Com was attacked. Nearly 500 accounts were compromised, and the thieves made off with more than $31 million in cryptocurrencies.

Despite its imperfections, 2FA still provides better protection than passwords alone.

Which authenticator app is best for you?

When deciding which authenticator app to use, first consider what your actual needs are, as sometimes free and budget software may only provide basic options, so if you need to use advanced tools you may find a paid platform is much more worthwhile. Additionally, higher-end software can really cater for every need, so do ensure you have a good idea of which features you think you may require from your authenticator app.

How we tested the best authenticator apps

To test for the best authenticator apps we first set up an account with the relevant platform. We then tested the service to see how the software could be used for different purposes and in different situations. The aim was to push each authenticator app to see how useful its basic tools were and also how easy it was to get to grips with any more advanced tools.

Read how we test, rate, and review products on TechRadar.

---