Rate this page:

Twilio Account Security

Twilio has a collection of account security APIs, SDKs and pre-built mobile and desktop apps that allow you to address three important steps in the lifecycle of user accounts in your application:

  • Verify. Ensure real humans are behind new account requests while reducing fraud and spam.
  • Authenticate. Either add a second factor to the username/password with 2FA or replace a password entirely.
  • Recover. Make it easy to re-authenticate users when they forget a password or lose a trusted authentication device.

Ready to build now? Dive into our Verify, or Lookup Quickstarts and start your evaluation in under 20 minutes!

Account Security APIs, SDKs, and apps

With our RESTful APIs, you are able to integrate account security features deeply into your application. You'll keep control over branding, flow and user experience while avoiding the hassle of building the security logic and scaling the platform. The APIs are:

  • Twilio Lookup API - Real-time data on phone numbers to filter out high-risk accounts.
  • Twilio Verify API - Phone verification via multiple channels using API calls.
  • Twilio Authy API - Older version of the Verify API. Please use Verify for new use cases, except those requiring Authy App push.

For authentication, while SMS and voice is widely available for most users, it's advisable to go with the more secure options of app-generated soft tokens or push and silent device approval authentication. To save developer time, we've already built an authentication app for iOS, Android, Windows and MacOS. The app, called Authy, is an essential link between your users and their trusted devices, allowing them to self-serve account recovery when locked out.

SDKs & Helper Libraries

The free Authy app is great if you'd like to avoid building your own apps. If you do choose to build your own mobile app, you can also elect to integrate the Verify Push Client Library.

Helper Libraries speed up your Twilio security integration. We continuously release and support Helper Libraries targeting PHP, Python, C#, Ruby, Java, Go, and Node.js (JavaScript).

Shared APIs

Account Security consists of a number of shared APIs that expose activity and data from across both the Verify and Authy APIs.

Rate this page:

        Thank you for your feedback!

        Please select the reason(s) for your feedback. The additional information you provide helps us improve our documentation:

        Sending your feedback...
        🎉 Thank you for your feedback!
        Something went wrong. Please try again.

        Thanks for your feedback!

        Refer us and get $10 in 3 simple steps!

        Step 1

        Get link

        Get a free personal referral link here

        Step 2

        Give $10

        Your user signs up and upgrade using link

        Step 3

        Get $10

        1,250 free SMSes
        OR 1,000 free voice mins
        OR 12,000 chats
        OR more