WordPress Two-Factor Login using Clef
WordPress Two-Factor Login using Clef. Modern two-factor that people love to use: strong authentication without passwords or tokens; single sign on/off magical login experience.
Clef Login Features
- No passwords: log in securely with the Clef wave, and enjoy two-factor protection without one-time codes.
- No extra devices: use your smartphone instead of a “third device” such as a USB drive or security key.
- Single sign on/off: Scan the Clef Wave once, then enjoy one-click sign ins for all subsequent sites. Also, sign out from all your sites with one-click any time, or set the timer to log you out automatically when you’re done working.
Clef Security Features
- Strong authentication: Clef replaces passwords with the highly secure, tried-and-true RSA public-key cryptosystem.
- Clef stores the encrypted private key on your phone rather than in a central database. Thus even in the unlikely event of a catastrophic security breach on Clef’s servers, your login credentials remain secure on your phone.
- Every Clef login requires two identification factors: your phone and a fingerprint or PIN. So even if your phone is lost or stolen, your Clef profile and logins remain safe and sound.
- Comprehensive login protection: Clef disables passwords for all three WordPress authentication points: Dashboard access, API access (XML-RPC), and password resets. Thus it protects WordPress’s front door and back door against the full spectrum of password-based attacks:
- brute-force and botnet login attacks
- weak, leaked, and recycled passwords
- sending login credentials in plain text via an insecure (non-SSL/TLS) connection
- phishing attempts
- account takeovers via email breaches
The post WordPress Two-Factor Login using Clef appeared first on WPCommunity.