Online security and the risks of account hacking is increasing as traditional security measures are no longer enough or failing, says Richard Dodds of Dialogue Group.
This has led more and more brands to turn to a more robust Two Factor Authentication process (2FA) which will eventually lead to a major growth in the A2P SMS messaging sector.
A recent report commissioned by Telesign revealed that 80% of users of online accounts worry about security and 96% fear being hacked. The report also highlighted that 40% have actually experienced some kind of security incident. It found that only 30% expressed confidence that passwords could protect them, but they still use the same weak passwords on multiple secure sites. In all, 68% said they want secure sites to provide them with an extra layer of security.
These results from the survey are explained further in a research study from Google entitled, Secrets, Lies, and Account Recovery. Google analysed hundreds of millions of secret questions and answers that had been used for millions of account recovery claims. It found that these so called security questions were either too hard to remember or too easy for a fraudster to guess. They went on to say that merely adding to these vague security questions was not enough, as more and more users will have difficulties in retrieving their accounts.
Solution: Two-factor authentication
2FA authentication will become the preferred security option as many online brands and OTT apps choose to adopt this method. 2FA requires consumers to enter a password combined with a code delivered via SMS message or secondary email to a handset. These additional authentication methods can offer a more secure user experience, which is in direct response to consumer security concerns. The added advantage for this of course is the increase in A2P SMS traffic for a mobile operator, so their role in this diversification is just as important.
With Google leading the way by exposing the high risks of using security questions for authentication and steering their account holder towards 2FA, many other major brands such as Facebook and Uber are also adopting this method for account verification.
We can soon expect 2FA to be the normal account retrieval method.
Reliable, on-time A2P SMS delivery plays a key role for 2FA
If 2FA is to be implemented by brands and adopted by consumers as the preferred option for online authentication, then it will be absolutely crucial for the SMS codes to be delivered on time, every time using a reliable service.
Brands would need to ensure that the SMS codes are delivered without fail through a secure and trusted channel so that it reaches the handsets. Consumers would need to be confident that they receive the SMS message within seconds, making it safer and easier to recover their accounts.
Mobile Network Operators (MNOs) have a vital part to play to ensure that the A2P SMS industry is cleaned up. They all need to make A2P SMS a priority to resolve the issues with grey (non-legitimate) route messaging and to monitor the network to block these routes. It’s important to protect their consumers who are also customers of the brands and ensure they continue to benefit from an enhanced experience and quality of service.
All of this supports Dialogue’s strategy on 100% on-net A2P SMS traffic delivery and the recent announcement of the rapid delivery initiative which aims to deliver 95% of time sensitive A2P SMS messages within 10 seconds. With 2FA taking off, information, reliability and time are key to its success. Brands need to ensure that they connect with an A2P SMS partner who has on-net direct connectivity, which in return will give them the confidence that the SMS messages are reaching their customers. They should also be transparent with their customers to ensure they fully understand the 2FA revolution.
The author is Richard Dodds, global director – Carrier Relations, Dialogue Group
