Out-of-band authentication
Out-of-band authentication, or OOBA, is a form of two-factor authentication that typically uses two communication channels to verify identity and grant a user access to a system. The two communication channels typically combine a computer and a smartphone. It is an additional layer of security and is used across various industries, mainly in the financial sector.
How Does Out-Of-Band Authentication Work
Out-of-band authentication works when two different communication channels verify a user’s identity, and the main channel is the one the user uses to access a system, which can be a mobile app or web browser. The secondary medium, such as a phone call or email, acts as a separate communication channel.
Users must enter their username and password on the primary channel to use out-of-band authentication. Then, the system sends a one-time password to the user’s secondary channel, and they must enter the one-time password on the primary channel to complete the authentication process.
Examples of Out-Of-Band Authentication
Below are some examples of out-of-band authentication:
- A user receives a one-time password through text message or email to complete a login into a bank account.
- A user calls their banking institution to verify a large purchase.
- A user utilizes a physical security key to log into a computer.
Advantages of Out-Of-Band Authentication Work
Out-of-band authentication can provide some benefits that include:
- Reduced risk of theft of credential
- Mitigation of Man-in-the-Middle Attacks
- Multi-factor authentication
- Resistance to phishing attacks