Blog Posts

2-step verification. You can offer it with PHP, too

You may certainly have heard of the bad things which have happened to Mat Honan. Some hackers deleted almost everything of him. iPhone, iPad, Macbook, Google, hacked his Twitter Account, etc… Almost everything could have been prevented if he had used Google's 2-step Verification. So if you have a Google Account and didn't enable it, go ahead and do it.

But that's not the point of this blogpost. Offering 2-step verification is something which greatly can increase the security of your web application. And I already wrote almost a year ago about a little PHP class I developed for using such a system together with the Google Authenticator.

Now is the time to implement that in some real life apps. The awareness should be here now. Unfortunately we still couldn't do it somewhere, therefore the code is still the same and it's still not available as a bundle for Symfony2. But maybe someone out there is up to that task.

And here's the original blogpost about "2-step verification with Google Authenticator and PHP" with some more information about all that.

Related Entries:
- 2-step verification with Google Authenticator and PHP
- A RSS feed for private Google Groups for Google Apps
- Techday Slides: OWASP Security Top 10
- Hiding parts of a page from Google
- jsdomenu versus Google Analytics

About the author

Comments [2]

Thomas R., 14.08.2012 13:24 CEST

The SonataUserBundle integrates the 2 step verification process, so you can use it to easily protect any critical account.

More information: http://www.sonata-project.org/bundles/user/2-0/doc/reference/two_step_validation.html

chregu, 14.08.2012 13:49 CEST

Cool. Glad to see that.

No new comments allowed (anymore) on this post.