Two-Factor Authentication (2FA)

Two-factor authentication (2FA) is a security method that requires users to provide two distinct forms of identification before accessing an account. The first factor is typically a password, while the second is something the user physically possesses, such as a code from a mobile authenticator app or an SMS message. This layered approach ensures that a compromised password alone is not enough to gain access.

Password breaches are among the most common security incidents. If an attacker obtains a publisher's login credentials, they could access confidential publications, reader data, and payment information. Two-factor authentication adds a critical barrier that blocks unauthorized access even when passwords are leaked or guessed.

FlipLink supports secure account access through Google and Microsoft sign-in options. By using these identity providers, users benefit from the 2FA protections already configured on their Google or Microsoft accounts. This means if you have 2FA enabled on your Google account, that same protection extends to your FlipLink login. For organizations managing sensitive publications through FlipLink's [team collaboration](/features/team-collaboration) features, this ensures every team member's access is protected by their identity provider's security policies without requiring FlipLink to manage a separate 2FA system.

A financial services firm publishes confidential investment reports through FlipLink. Each team member signs in with their corporate Microsoft account, which requires a Microsoft Authenticator code in addition to their password. Even if an employee's password is compromised in a phishing attack, the attacker cannot access the firm's FlipLink publications without the authenticator code.