WordPress Two-Factor Login using Clef

WordPress Two-Factor Login using Clef. Modern two-factor that people love to use: strong authentication without passwords or tokens; single sign on/off magical login experience.

Clef Login Features

  • No passwords: log in securely with the Clef wave, and enjoy two-factor protection without one-time codes.
  • No extra devices: use your smartphone instead of a “third device” such as a USB drive or security key.
  • Single sign on/off: Scan the Clef Wave once, then enjoy one-click sign ins for all subsequent sites. Also, sign out from all your sites with one-click any time, or set the timer to log you out automatically when you’re done working.

Clef Security Features

  • Strong authentication: Clef replaces passwords with the highly secure, tried-and-true RSA public-key cryptosystem.
    • Clef stores the encrypted private key on your phone rather than in a central database. Thus even in the unlikely event of a catastrophic security breach on Clef’s servers, your login credentials remain secure on your phone.
    • Every Clef login requires two identification factors: your phone and a fingerprint or PIN. So even if your phone is lost or stolen, your Clef profile and logins remain safe and sound.
  • Comprehensive login protection: Clef disables passwords for all three WordPress authentication points: Dashboard access, API access (XML-RPC), and password resets. Thus it protects WordPress’s front door and back door against the full spectrum of password-based attacks:
    • brute-force and botnet login attacks
    • weak, leaked, and recycled passwords
    • sending login credentials in plain text via an insecure (non-SSL/TLS) connection
    • phishing attempts
    • account takeovers via email breaches

The post WordPress Two-Factor Login using Clef appeared first on WPCommunity.


Tags: , , , ,