For any of you worried about your PlayStation Network account’s security, Sony has some good news for you. Two-factor authentication is now live on PSN.
Two-factor authentication – called two-step verification by Sony – arrives more than four months after Sony announced they were preparing to offer it. Valve added two-step verification to Steam accounts last year; Microsoft accounts used for Xbox Live login have had it for three years.
Two-step verification is an extra layer of security that many services, like Google Accounts, Facebook or Apple ID, provide users. It follows the authentication tenets of “something you know” and “something you have”. First, a person logs in with a username and password (“something you know”). Once a login is successful, the service sends an authentication code – usually a four-to-six character code – to device like a smartphone (“something you have”). Entering that code verifies the user’s identity and completes the login process. This prevents unsavory people from just guessing your password, as they would need your phone as well to get in.
Sony’s implementation is still a bit clunky. You cannot use an app like Authy to receive the authentication code; text message is the only way. Also, only newer devices, like the PlayStation 4 or the web, will be able to enter the authentication code. Older devices like the PS3 or Vita will need to setup a “device setup password”, which is a bit more cumbersome.
The ability to enable or disable two-step verification also requires a web browser or PS4. From those devices, you can setup the device setup passwords and check backup codes. Admittedly, the whole system is a but cumbersome. However, the option itself is a boon for PlayStation Network subscribers who worry about their account’s security.