Two-factor Authentication in Windows 10 to Prevent Hijacking of your Account

by Radu Tyrsina
Radu Tyrsina
Radu Tyrsina
CEO & Founder
Radu Tyrsina has been a Windows fan ever since he got his first PC, a Pentium III (a monster at that time). For most of the kids of... read more
Affiliate Disclosure

One of the things that we’re most concerned when using our computers is security. And since Windows devices are always the target of attackers, Microsoft has decided to come up with a really strong security measure in Windows 10.
windows 10 security 2 factor authentification
There will be one more reason to make the jump to Windows 10 once it is made available for everybody to download – its new security feature. Recently, it has been revealed that Windows 10 will get two-factor authentication, a feature that has been long requested by business and enterprise users but also by average consumers.

READ MORE: Fix: ‘Unable to Delete Folder’ in Windows 8.1, Windows 10

With a wo-factor authentication in Windows 10, Microsoft tries to reduce the chances of someone hijacking your account after a data breach. If you want, the new OS will optionally include a PIN code as the first option or biometric reader as the second. So, if your data gets breached, hackers will still need to have that pin code or the finger print reader. Here are some other security measures that will be used by Microsoft:

Not that Microsoft is leaning solely on this to guard your digital goods. The new platform will store user access tokens in a secure “container” that can’t be exposed, even if an intruder messes with the Windows kernel’s code. It’ll also keep your home and work data separate (like Android for Work or BlackBerry Balance), give you finer-grained control over virtual private networks and let companies prevent staff from installing anything but digitally signed apps. This doesn’t mean that you can stop worrying about control of your info as soon as you install Windows 10, but it could reduce the chances of a full-fledged security disaster.

And here’s what more Microsoft added in a recent blog post:

Once enrolled, devices themselves become one of two factors that are required for authentication. The second factor will be a PIN or biometric, such as fingerprint. From a security standpoint, this means that an attacker would need to have a user’s physical device – in addition to the means to use the user’s credential – which would require access to the users PIN or biometric information. Users will be able to enroll each of their devices with these new credentials, or they can enroll a single device, such as a mobile phone, which will effectively become their mobile credential. It will enable them to sign-in into all of their PC’s, networks, and web services as long as their mobile phone is nearby. In this case, the phone, using Bluetooth or Wi-Fi communication, will behave like a remote smartcard and it will offer two factor authentication for both local sign-in and remote access.

So, what do you think of this new innovative feature?

READ ALSO: Installing Windows 10 on Surface Pro 3: Potential Problems You Could Encounter

This article covers:Topics: