Multiple methods, one platform
Users can enable one or multiple 2FA methods and switch between them at any time.
Authenticator App (TOTP)
Works with Google Authenticator, Authy, 1Password, and any TOTP-compatible app. Generates time-based codes offline.
Email OTP
Six-digit codes delivered to the user's verified email address. No app installation required.
SMS OTP
Text message verification via Twilio. Ideal for users who prefer their phone number as a second factor.
Passkeys & WebAuthn
Hardware security keys and biometric auth. Phishing-resistant, FIDO2-compliant, with post-quantum key wrapping.
Built for real-world security
Users can enable multiple methods simultaneously and set a default
Backup codes generated at setup — encrypted with post-quantum keys
Per-method enable/disable without affecting other factors
ML-powered adaptive prompting — only challenge when risk signals are elevated
E2E encrypted TOTP secrets — zero-knowledge architecture means we never see them
Brute-force protection with ML anomaly detection and adaptive lockout