For quite some time, Name.com has been a leader in giving additional security to its clients without much hassle. The company’s offerings, called NameSafe, allow clients to have enhanced account security with a phone app or a security key fob. Sister company, eNom, also offers security enhancements in the form of Account Validation. In addition, 101 Domain offers a full suite of security products, as does Dynadot.
In a blog post this morning, Namecheap announced that it is now offering two factor authentication to its clients. This means that in order to log in to an account, a client would need the account password as well as a text message code that is sent for each log in attempt. This type of added security is great to see being offered.
I think all domain registrars should offer some form of two factor authentication for people to access accounts. My prefered method, and one that I use on various password protected accounts, is the text message authentication. I enter my user ID and password on specific websites, and they send me a text message with a one use code I need to enter in order to access my account. Without the text message, I can’t get into the account.
Other companies like Moniker and Go Daddy (**see update) offer their own forms of extra layers of security, but from what I recall, these extra security features are a bit cumbersome because they aren’t simple like a text message or answering security questions. For someone who makes frequent domain transfers, I would prefer the two factor authentication that I can do on my own, without the assistance of an account manager or a person who needs to authenticate my identity. They may be secure, but they can also be inconvenient for someone who needs to make frequent changes.
(**Update: Go Daddy DOES offer two step authentication and has done so for over a year.)
For many people who invest in domain names, a domain registrar account may be more valuable than a bank account. Unfortunately, most domain registrars don’t offer upgraded login security measures that are quick and effective.
If you know of other registrars that offer simple two factor authentication, please share that information in the comment section. If I am wrong about Go Daddy or Moniker, please let me know that, too!