Twitter has finally introduced an improved security feature to further discourage unauthorised logins and account breaches: using physical security keys as the only two-factor authentication (2FA) option.
For context, a security key is a type of hardware-based safety net. Apart from a password to access something on your computer or smartphone, adding a security key means an extra layer of security that can’t be breached by others elsewhere. Once set up, everytime you log into something on a browser or app, it will ask for your key to be connected before allowing you in.
It typically looks like a pendrive and has a either a USB-A, USB-C or Lightning connector on one end to connect to your device when you need to access something. The really high-end security keys will even support NFC connections for speedy access to your smartphone.
Twitter users have actually always been able to use security keys as a 2FA option since 2018. However, users would still need to have a backup form of 2FA, such as sending an SMS code to your smartphone to gain access. That changes now though, with Twitter allowing you to use the hardware-based 2FA method as your only form of 2FA to log in.
To add a physical security key as a 2FA option on your Twitter account, you’ll first need to log into your account on a web browser. Click the More button on the left, then click Settings and Privacy from the options. From there, hit Settings followed by Security and account access which should lead you to this screen:
Once there, simply click on Security, Two-factor Authentication and then you’ll see the options to add 2FA via SMS, an authentication app or a security key. Of course, any form of 2FA will be better than having no 2FA at all, so even if you don’t have a physical security key on hand, you can still set up 2FA via SMS or an app if you’d like to this way.
To read more about what Twitter are doing with security keys, you can check out their blogpost here.
[ SOURCE ]