Authenticator is a simple, free, and open source two-factor authentication app. It helps keep your online accounts secure by generating unique one-time passwords, which you use in combination with your other passwords to log into supporting websites. The simple combination of the password in your head and the rotating passwords generated by the app make it much harder for anyone but you to access your accounts.
• Easy: Simple setup via QR code, "otpauth://" URL, or manual entry
• Secure: All data is stored in encrypted form on the iOS keychain
• Compatible: Full support for time-based and counter-based one-time passwords as standardized in RFC 4226 and 6238
• Off the Grid: The app never connects to the internet, and your secret keys never leave your device.
• Added an alert to ask the user for confirmation before permanently deleting a token.
Ratings and Reviews
Simple, maybe too simple?
Provides a brain dead interface which is a good thing for this type of app.
The lack of “Internet” backup is a security feature, cool. As the developer says the keys are stored in the iOS key chain and follow normal protocol for backup that would seem like best practice. One needs to understand the limitations of cloud storage relative to keys and the inherent need to back up the device “locally”, which has its own risks. The act of having two devices with these encryption keys is verboten in this model because the keys and the device are viewed as indivisible. If you have they keys, you must therefore have the one and only device that has them (or have an encrypted backup and know it’s pass phrase).
As for the user interface, Noob/NoOp could fail to put a passcode on their phone, lol. If we were going to secure Grandma, despite her best intentions to the contrary, we might default to use of an app level Authentication Password, PIN, Touch/Face. Many apps allow this as practically speaking someone may let grand kids use their phone occasionally.
Hope it supports iOS 12.x token integration.
BTW, thank you for this clean app! I’ll have a look at the open source for sure.
Authenticator apps are pretty much vanilla. They do one job and the interface is simple. But details matter.
The google app presents the six-digit numbers grouped in threes. This app groups in twos.
For whatever reason, my mind retains two groups much better than three groups. I asked google to add a setting which would let me choose two groups as the display. They ignored me. This app works for me so much better. Thank you!!
Too east to delete a token - then you’re screwed
Was working with Dashlane then there was a problem with authenticator app. You see in one small second my finger hit the delete button on the token. Now I can’t log in to anything. Crazy thing is I’m trying to get support and it does not recognize my email. Stay away from this app until it’s better designed or you’ll be spending hours trying to get into your account on another app. There’s no way it should be this easy to accidentally delete a token and then screw your life for good. Really a bad design
With Family Sharing set up, up to six family members can use this app.