Yeqa uye kokuqukethwe okuyinhloko

Yini i-2FA? Umhlahlandlela wokuqinisekiswa kwezici ezimbili

Yini i-2FA? Indlela ukuqinisekiswa kwezici ezimbili okusebenza ngayo, izinhlobo ezinhlanu ze-2FA, kanye nendlela yokukunika amandla kuma-akhawunti akho abaluleke kakhulu.

Kugcine kubuyekezwa: Ephreli 5, 2026

Amaphasiwedi awodwa awanele ukuvikela ama-akhawunti akho aku-inthanethi. Ukweqiwa kwedatha kuveza izimemezelo eziyizigidi ngonyaka, futhi ngisho namaphasiwedi aqinile angangaphazamiseki nge-phishing, ama-keyloggers, noma ukuhlasela nge-brute-force. Ukuqinisekiswa kwezici ezimbili (2FA) kungeza ungqimba lwesibili lokuzivikela — ngisho noma othile eba iphasiwedi yakho, ngeke afinyelele kwi-akhawunti yakho ngaphandle kwesici sesibili. Lo mhlahlandlela uchaza ukuthi yini i-2FA, indlela yonke indlela esebenza ngayo, yiziphi izinhlobo eziphephe kakhulu, nokuthi ungayisetha kanjani kuma-akhawunti akho abaluleke kakhulu. Lesi sigaba sinye esisebenza kakhulu osisebenzisayo ukuvikela impilo yakho yedijithali.

Izinhlobo zokuqinisekiswa kwezici ezimbili

Amakhodi e-SMS

Ikhodi yesikhathi sinye ithunyelwa enombolweni yakho yefoni nge-imeyili yombhalo. Ufaka le khodi ngemva kwephasiwedi yakho ukuze uqedele ukungena. I-SMS 2FA iyindlela esekelwa kakhulu — cishe yonke inkonzo iyayisekela futhi ayidingi noma yiziphi izinhlelo ezengeziwe noma i-hardware. Kodwa-ke, iyifomu eyibukhulu kakhulu ye-2FA ngenxa yokungenwa kwe-SIM swap (lapho umhlaseli encengela ophrovayida wakho ukudlulisela inombolo yakho yefoni ku-SIM yabo) kanye nokusetshenziswa kweprotokholi ye-SS7 okungaphazamisa imiyalezo yombhalo.

  • Izinzuzo: Isekelwe kakhulu, ayidingi i-app, isebenza kunoma iyiphi ifoni
  • Izingozi: Ingozi ku-SIM swap, ukungeniswa kwe-SS7, kanye nobunjiniyela bezenhlalo bemboni yefoni

Ama-app okuqinisekisa (TOTP)

Ama-app ye-Time-based One-Time Password (TOTP) akha ikhodi entsha yamadijithi angu-6 njalo emizuzwaneni engu-30 esebenzisa imfihlo eyabiwe nesikhathi samanje. Ama-app adumile ahlanganisa i-Google Authenticator, i-Authy, i-Microsoft Authenticator, ne-Ente Auth. I-TOTP iphephe kakhulu kune-SMS ngoba amakhodi enziwa endaweni kwidivayisi yakho — alikho ikhanali yokudlulisela engagcwala. Amakhodi asebenza kungaxhumekile futhi awahlanganiswa nenombolo yakho yefoni. Le yindlela enconywayo ye-2FA kubantu abaningi, elinganisa ukuphepha okuqinile nobulula bokusetshenziswa.

  • Izinzuzo: Ezokuphepha, ikhono lokungaxhumekile, ama-app amahhala atholakalayo, awahlanganisiwe nenombolo yefoni
  • Izingozi: Ukulahlekelwa idivayisi yakho ngaphandle kwamakhodi okugcina kukuvalela; amasayithi okunqola asengakwazi ukubamba amakhodi ngesikhathi sangempela

Amakhiye okuphepha e-hardware

Amadivayisi okuphathekayo afana ne-YubiKey, i-Google Titan, ne-SoloKeys agxumeka ku-USB port yakho noma athinta nge-NFC ukuze aqinisekise. Amakhiye e-hardware asebenzisa indinganiso ye-FIDO2/WebAuthn, okumelana nokunqola ngokuklamela — ukhiye uhlola ngokwekhriphtho isizinda sesayithi ngaphambi kokuqinisekisa, okwenza kungenzeki ngamasayithi okunqola ukuthi avuke. I-Google idinga zonke izisebenzi ukuba zisebenzise amakhiye e-hardware futhi ibikile ukungasebenzeli kokuhlasela kwe-phishing kusukela kuqaliswa. Amakhiye abiza $25-70 futhi ayindlela ye-2FA ephephe kakhulu etholakalayo.

  • Izinzuzo: Ukuphepha okuqinile kakhulu, kumelana nokunqola, akudingi amabhethri, kusebenza kungaxhumekile, kunenkambiso
  • Izingozi: Abiza $25-70, angase alahleke noma akhohlakale, akubona zonke izinkonzo ezisekelayo

I-biometrics

Iziskena zezigxivizo zeminwe (Touch ID), ukuhlonza ubuso (Face ID), kanye neziskena ze-iris zisebenzisa izici zakho zokuphathwa njengesici sokuqinisekisa. I-biometrics ilula — uhlala unayo futhi awukwazi ukuyikhohlwa. Zisebenza njengesici sesibili kanye namaphasiwedi kumadivayisi nezinkonzo eziningi. Kodwa-ke, i-biometrics ayikwazi ukushintshwa uma yenzeke (ngokungafani nephasiwedi) futhi ingaphoqelelwa ngezikhungo zomthetho ezindaweni eziningi. Ikhwalithi iyahluka kakhulu phakathi kwamadivayisi.

  • Izinzuzo: Ilula, ihlala itholakala, ukuqinisekiswa okusheshayo, kunzima ukufafaza
  • Izingozi: Ayikwazi ukushintshwa uma yenzeke, ingaphoqelelwa ngokomthetho, ikhwalithi iyahluka ngedivayisi

Ama-passkey

Ama-passkey iyindinganiso yokuqinisekisa yamuva kakhulu, eklaywe ukuthatha indawo yamaphasiwedi ngokuphelele. Akhelwe ku-FIDO2/WebAuthn, ama-passkey asebenzisa i-cryptography yokhiye womphakathi — idivayisi yakho ilondoloza ukhiye oyimfihlo, futhi inkonzo ilondoloza ukhiye womphakathi ohambisanayo. Ukuqinisekiswa kwenzeka nge-biometric yedivayisi yakho noma i-PIN, ngaphandle kwephasiwedi yokuthi uthayiphe, unqole, noma uwebe. I-Apple, i-Google, ne-Microsoft sezihlanganise ukusekelwa kwe-passkey ezinhlelweni zazo zokusebenza. Ama-passkey avumelanisa phakathi kwamadivayisi nge-iCloud Keychain, i-Google Password Manager, noma abanye ababonelelayo, ehlanganisa ukuphepha kwamakhiye e-hardware nobulula be-biometrics.

  • Izinzuzo: Imelana nokunqola, ayikho amaphasiwedi okukhumbula, avumelanisa phakathi kwamadivayisi, asheshayo
  • Izingozi: Insha ngokuncane, ayikasekelwa emhlabeni jikelele, izinkinga zokuvalelwa kweplatform nama-passkey avumelanisiwe

Imikhuba emihle ye-2FA

  1. Qalisa i-2FA ku-akhawunti yakho ye-imeyili kuqala — ukhiye omkhulu ema-akhawunti akho onke. Uma othile evula i-imeyili yakho, angasethaphinde amaphasiwedi kuyo yonke inkonzo exhumene nayo. I-imeyili yakho iyi-akhawunti eyodwa ebaluleke kakhulu okufanele uvikelwe nge-2FA.
  2. Sebenzisa i-app yokuqinisekisa kunokusebenzisa i-SMS noma yini lapho kungenzeka. Ama-app ye-TOTP avikelwa ekuhlaselweni kwe-SIM swap ne-SS7. Uma inkonzo ihlinzeka kuphela nge-2FA esekelwe ku-SMS, yisebenzise nakuba nje — i-SMS 2FA isengcono kakhulu kakhulu kunokungabi ne-2FA.
  3. Londoloza amakhodi okugcina ngokuphepha futhi ngokuhlukile. Wagcine emanejeni wephasiwedi (omunye ohlukile kunalo elivikelwe yi-2FA), wawaphinde futhi uwafake esitatishini sokuphepha, noma uwabhale ephepheni okugcinwe ngokuphepha. Ungalondolozi amakhodi okugcina kwinothi engakhwetshulwanga kwidivayisi efanayo ne-authenticator yakho.
  4. Cabanga ngokhiye wokuphepha we-hardware kuma-akhawunti akho abaluleke kakhulu — i-imeyili, ibhange, isitoreji sefu, kanye namamenenja ephasiwedi. I-YubiKey 5 NFC ($50) isebenza ne-USB-A, USB-C, ne-NFC, ihlanganisa cishe yonke idivayisi. Bhalisa amakhiye amabili nge-akhawunti yinye ukuze ube nokugcina.
  5. Buyekeza njalo ukuthi ngamaphi ama-akhawunti ane-2FA evusiwe. Sebenzisa imenenja yephasiwedi ukulandela. Ukulandelana kokubaluleka: i-imeyili, izinkonzo zebhange nezezimali, isitoreji sefu, izinkundla zokuxhumana, amasayithi okuthenga ane-payment methods ezigciniwe, kanye nanoma yini emisebenzini noma ema-akhawunti ochwepheshe.

Indlela yokusetha i-2FA

Ukusetha i-2FA kuthatha imizuzu engaphansi kwemihlanu nge-akhawunti yinye. Naku inqubo ye-2FA esekelwe ku-app yokuqinisekisa, eyindlela enconywayo kubantu abaningi:

  1. Vula amasethingi okuphepha:Iya kumasethingi okuphepha e-akhawunti yakho. Funa i-"Two-Factor Authentication," "2-Step Verification," noma "Login Security." Ku-Google, iya ku-myaccount.google.com > Security > 2-Step Verification. Ku-Apple, iya ku-Settings > [Your Name] > Sign-In & Security.
  2. Khetha indlela ye-2FA:Khetha indlela yakho ye-2FA. Khetha i-"Authenticator App" ngokulinganisa okungcono kakhulu kokuphepha nokulula. Faka i-app ye-TOTP uma ungenayo — i-Google Authenticator, i-Authy, noma i-Ente Auth zonke ziyizinketho ezinhle. I-Authy ne-Ente Auth zihlinzeka ngokugcina kwesibili kwefu kwamakhodi akho akhwetshulwe.
  3. Skena ikhodi ye-QR:Skena ikhodi ye-QR eboniswa esikrinini nge-app yokuqinisekisa yakho. I-app izokwakha ikhodi yamadijithi angu-6 evuselelayo njalo emizuzwaneni engu-30. Faka ikhodi yamanje ukuze uqinisekise ukuthi ukusetha kuyasebenza kahle.
  4. Londoloza amakhodi okugcina:Londoloza amakhodi akho okugcina ngokushesha. Iningi lezinkonzo lihlinzeka ngamakhodi okubuyisela esikhathini sinye akuvumela ukuthi ubuyele wuthole ukufinyelela uma ulahlekelwa idivayisi yakho yokuqinisekisa. Wagcine emanejeni wephasiwedi, uwaphinde, noma uwabhale phansi futhi uwabe endaweni ephephile ehlukile kumadivayisi akho. Ngaphandle kwamakhodi okugcina, ukulahlekelwa ifoni kungakuvalela kwi-akhawunti yakho unaphakade.

Imibuzo Ebuzwa Kaningi

Yingakho amakhodi okugcina ebalulekile. Lapho usetha i-2FA, iningi lezinkonzo lihlinzeka ngamakhodi okubuyisela — amakhodi esikhathi sinye ayeqayo i-2FA. Sebenzisa eyodwa ukuze ubuyele uthole ukufinyelela, bese usetha futhi i-2FA kwidivayisi yakho entsha. Uma usebenzisa i-Authy noma i-Ente Auth, amakhodi akho agcinwa abhekiwe akhwetshulwe efwini futhi angabuyiselwa kwidivayisi entsha. I-Google Authenticator manje nayo isekela ukugcina kwefu. Uma ungenamakhodi okugcina futhi ungenandlela yokubuyisela, kuzodingeka ukuthi udlule kwinqubo yokubuyisela i-akhawunti yenkonzo, okungathatha izinsuku noma amaviki futhi kungase kudinge ukuqinisekiswa kwesazisi.

Ngokuqinisekile yebo. Yize kunokungaphephi ekuhlaselweni kwe-SIM swap ne-SS7, i-SMS 2FA ivimbela isibalo esikhulu sokuhlasela okuzenzakalelayo. Ucwaningo lwe-Google lukhombisile ukuthi imisa i-100% yama-bot azenzakalelayo kanye no-96% wokunqola okuningi. Imodeli yangempela yengozi kubantu abaningi ayifaki i-SIM swap eqondiwe — leyo iyingozi enkulu kakhulu ezinhloko-zezikweletu ezibalulekile ezinjengabaphathi be-crypto kanye nezisebenzi zomphakathi. Uma inkonzo ihlinzeka kuphela nge-SMS 2FA, yiqalise. Noma yiyiphi i-2FA ingcono kakhulu kunokungabi ne-2FA.

Ayikho indlela ye-2FA engangenwe ngokuphelele kwi-100%, kepha ubunzima buyahluka kakhulu. Amakhodi e-SMS angase angabhekwe nge-SIM swap. Amakhodi e-TOTP angangenwa ngesikhathi sangempela nokuhlasela okusezingeni eliphakeme okuhambisa amakhodi ekhasini langempela lokungena. Kodwa-ke, amakhiye okuphepha e-hardware asebenzisa i-FIDO2 amelana nokunqola ngokuklamela — ukhiye uhlola ngokwekhriphtho isizinda sesayithi ngaphambi kokuqinisekisa, okwenza kungenzeki ngamasayithi okunqola ukuthi avuke. Ama-passkey azuza ukuvikelwa okufanayo. Kubantu abaningi, i-2FA esekelwe ku-TOTP ihlinzeka ngokuvikeleka okwanele futhi okungaphezu kwesidingo ekuhlaselweni okuvelelekayo.

Ngokuyinhloko yebo, kepha beka okubaluleke kakhulu ngokwecebo. I-akhawunti yakho ye-imeyili ibaluleke kakhulu — iyindlela yokubuyisela kukho konke okunye. Bese, qalisa i-2FA ezinkonzweni zebhange nezezimali, isitoreji sefu (Google Drive, iCloud, Dropbox), izinkundla zokuxhumana, noma yiyiphi i-akhawunti enolwazi lokukhokha olugciniwe, kanye nemenenja yakho yephasiwedi. Ama-akhawunti aphansi anganidatha yomuntu siqu ungawasusa, kepha umgomo kufanele ube i-2FA yonke indawo.

Amakhiye okuphepha e-hardware (YubiKey, Google Titan) asebenzisa indinganiso ye-FIDO2/WebAuthn ayindlela ephephe kakhulu ye-2FA etholakalayo. Amelana nokunqola ngokuklamela, adinga ukuba nokufaka okuphathekayo, futhi awanawo amakhodi okuthi anqamulwe noma anikezelwe. Ama-passkey ahlinzeka ngokuphepha okufanayo nokulula okwengeziwe kokuvumelanisa kwefu. Ama-app okuqinisekisa e-TOTP ayinketho elandelayo engcono — aphephe kakhulu kune-SMS. I-SMS iyi-2FA ebuthakathaka kakhulu, kodwa isengcono kakhulu kuphela kuphasiwedi kuphela kokuqinisekisa.

Yebo, lokho kuyinhloso yawo yokuklama. Ama-passkey ahlanganisa iphasiwedi nesici sesibili esinyathelweni esisodwa esisekelwe ekuqinisekisweni okumelana nokunqola. Esikhundleni sokuthayipha iphasiwedi bese ufaka ikhodi, ngokulula uqinisekisa nge-biometric yedivayisi yakho noma i-PIN. I-cryptography ye-FIDO2 esekelwe ihlinzeka ngokuphepha okuqine kakhulu kunenhlanganisela ye-password + TOTP. Kodwa-ke, ukwamukelwa kwe-passkey kusakhula — akusizinkonzo zonke eziyisekelayo. Ngesikhathi sokushintsha, qhubeka usebenzisa i-2FA yendabuko (i-app yokuqinisekisa noma ukhiye we-hardware) ezinkonzweni ezingakaboni ama-passkey.