Min menu


Twitter allows security key to be used as the only 2FA method


Twitter said it plans a future update that allows accounts that support 2FA to use security keys as the only authentication method while disabling all other login methods.

You can now use a security key to sign in to your Twitter account, but you need to enable another 2FA method, such as authentication app or SMS codes, as a backup.

While authentication apps, such as Google Authenticator or Authy, are safer than using SMS codes for binary authentication 2FA, security keys — physical keys that connect to a computer using USB or Bluetooth — are the safest way to protect your online account.

Users do not have to type a code that can be intercepted by a malicious third party, nor do users have to give Twitter any additional personal information, such as a phone number, so they can sign in to their accounts.

Twitter also said that it allows multiple security keys across one account, previously allowing only one key per account, in addition to other 2FA methods.

In December, Twitter announced that it was adding security keys to accounts that support binary authentication 2FA when users log on to its mobile apps.

Twitter said: Secure your account using multiple security keys, and you can now sign in and sign in with more than one physical key via mobile phone and the web.

2FA is an additional security layer for Twitter accounts that requires users to use a security key or enter a code after entering their password to successfully authenticate.

This makes sure that only the owner can sign in and block malicious attempts to control the account by guessing or resetting the password.

While some influential Twitter accounts were hijacked last year despite the enabled 2FA binary authentication after attackers gained access to internal management systems, users still have to run binary authentication to provide better protection against less sophisticated hacking attempts.

To run binary authentication 2FA via a Twitter account, you must go to the account list, then to settings and privacy, and then to security, access the account, and run the binary authentication option.