New Facebook Security Features: One-Time Passwords, Security Info

Facebook has launched two new security features to help users stay in control of their accounts. Users can now receive a one-time password from Facebook via text message, and file security information to aide with account retrieval. The previously announced security feature which allows users to end Facebook sessions remotely has now been rolled out to all users. While these features should help most users, there is potential for abuse of one-time passwords.

By texting “otp” (for “one-time password”) to Facebook’s text message short code 32665 (FBOOK), users are texted back an alphanumeric, case-sensitive password which can only be used to log in to their account once and which expires 20 minutes after it’s received. Users must text from a phone number they have registered with their account via Account->Account Settings->Mobile.


One-time passwords help alleviate user worries about logging in on insecure machines such as “public computers in places like hotels, cafes or airports.” This prevents users from needing to change their persistent password as frequently. However, this means that if someone steals your phone, they’ll be able to get a one-time password and access your account. Users should make sure to remove phone numbers from their account which they don’t have access to, such as the number of a lost phone until they have called their mobile phone operator and remotely deactivated the phone’s sim card.

The new security information feature allows users to enter additional email addresses, mobile phone numbers, and security questions which can help Facebook verify a user’s identity. This way a user can be swiftly returned control of their account should they lose access. While there is currently no link to the security information page from the Account->Account Settings->Settings->Account Security panel, users can visit the page at the URL http://www.facebook.com/update_security_info.php. Users will also be regularly prompted to update this info upon logging in.

Recently some users have been locked out of their account by the photo identification verification security feature. The feature requires users to name friends based on the profile pictures of those friends, but profile pictures don’t always show a user’s face, and some users have many friends from social games who they couldn’t identify from a photo. Security information should give users alternative methods of reclaiming their accounts. Registering additional email addresses also prevents malicious parties from using unregistered addresses to create a fake account posing as you.

Lastly, all users can now terminate active Facebook sessions on other machines. This way, if a user forgets to log out of their account after signing in on a friend’s phone or a public computer, they can log out remotely. Users can view and terminate active sessions via the Account->Account Settings->Settings->Account Security panel.

As users increasingly invest time, establish a social graph, store credit card info, deposit money through Facebook Credits, and maintain their reputation through their Facebook account, losing access becomes more costly. Facebook is trying to offer better account security, balanced against the introduction of new security threats and erroneous lockouts.

Creative Social Branding

Mediabistro Course

Creative Social Branding

Starting November 24, learn how to create a social buzz for your brand! You’ll learn how to engage with audiences on social platforms, identify and engage with current trends and influencers, and build an excellent social strategy to amplify your numbers and rate engagement. Register now!

 

Leave a Reply

11 Responses to “New Facebook Security Features: One-Time Passwords, Security Info”

  1. E says:

    Now, I have to add a lock on my cell phone! Thanks Facebook!

  2. Social Milestone » Blog Archive » New Facebook Security Features: One-Time Passwords, Security Info says:

    [...] Read the full article: facebook – Google Blog Search Share and Enjoy: [...]

  3. Samantha Wright says:

    Great stuff, a little overboard security wise but something worth doing thanks for sharing.

  4. facebook application development says:

    yeah its really great because now days security is a big issue for Facebook thanks to share sir :)

  5. Facebook Account Update :) « My Simple Life says:

    [...] New Facebook Security Features: One-Time Passwords, Security Info (insidefacebook.com) [...]

  6. tina addison says:

    l cannot log to my account over three month since l was blog because l forget my pass word.most of my friend are still connecting to my mail.

  7. FACEBOOK naujienos ir patarimai #62 | Komunikacija FACEBOOK'e says:

    [...] Atsiranda naujos saugumo funkcijos:  vienkartiniai slaptažodžiai sms žinute, kurie padės užtikrinti vartotojų saugumą jungiantis n…. [...]

  8. Facebook Beefs Up Security: Adds Remote Logout and One-time Password says:

    [...] networking giant has been busy cleaning up its act over the past few months.Now, Facebook has added a couple of more features to enhance security. The first of them is Remote Logout, which Facebook [...]

  9. Facebook mulls over Encrypted UIDs | IndiaSocial: Social Media and Digital News India, Social Media Case studies, Community says:

    [...] UID initiative, early in October it launched three new security features. Firstly they launched one-time passwords in Facebook to make it safer to use public computers in places like hotels, cafes or airports. In [...]

  10. Facebook Account Update :) « Maaz Khatib says:

    [...] New Facebook Security Features: One-Time Passwords, Security Info (insidefacebook.com) Posted in Internet, Technology | No Comments » [...]

  11. Arturas says:

    What if I am from another country and I need this password ? What should I do?

Get the latest news in your inbox
interested in advertising with inside facebook?

Social Media Jobs
of the Day

Sr. Editorial Content Manager

Amazon
New York, NY

Marketing & Social Media Director

PR.com
New York City / Long Island, NY

Acquisition Marketing Manager, E-Commerce

A Luxury Online Retailer
New York, NY

Social Media Strategist

A Luxury Real Estate Developer
New York, NY

Featured Company

Join leading companies like this one and recruit from the nation's top media job seekers on the Mediabistro Job Board. Every job post comes with our satisfaction guarantee. Learn More
 

Our Sponsors

Mediabistro A division of Prometheus Global Media home | site map | advertising/sponsorships | careers | contact us | help courses | browse jobs | freelancers | content | member benefits | reprints & permissions terms of use | privacy policy Copyright © 2014 Mediabistro Inc. call (212) 389-2000 or email us