Multi-Factor Authentication in Enpass
Multi-Factor Authentication (MFA) describes several kinds of heightened security methods for confirming a user’s identity in addition to your providing a username and password.
Enpass protects your passwords with stronger multi-factor security than other password managers
Most cloud-based password managers keep your data on their own servers, and you access your data on those servers with a username and password (which also serves as the master password to encrypt your data). And then you verify your identity via a second factor of authentication, like a code sent to your phone or email, but that’s it. Anyone trying to steal your passwords stored with most password managers would need:
- Your username and password
- A second-factor authentication, like a one-time code
With Enpass, you decide where and how your data is secured. This means when you store your data on cloud service like OneDrive, Google Drive or Dropbox, you’ve already created an extra layer of security: Your data is both encrypted with your Enpass master password and can’t be accessed without your cloud-account credentials — which can also include additional multi-factor options like app-specific passwords or biometric identification. Anyone trying to steal your passwords from an Enpass vault would need to get past three levels of authentication:
- Your cloud account’s username and password
- A one-time code, or an app-specific password, or a fingerprint or face ID to access your cloud account
- And your Enpass master password to decrypt your vault
Even if your master password were compromised, your data would remain secured by your cloud-account security. And if your cloud account were hacked, your data would remain secured (and encrypted) by your Enpass master password.
And you can go one factor further...
If you want to get even more sophisticated with your password security, Enpass also supports the use of keyfiles along with your master password.