Authy delivers a robust API and app that helps you secure users and future proof your business.
Authy API has merged with the Verify API
Migrate existing users to Verify before November 1, 2022, after which Authy Voice and SMS services will be deprecated. After May 1, 2023, access to Voice and SMS on the Authy API will cease. Going forward, the Verify API will support account security for SMS, Voice, and email one-time passwords.
Protect your business and your customers with API‑powered tools right for any use case or user.
Push authentications are more powerful than passwords. Instantly deliver a new, seamless experience for your user that adds context and confidence to their login.
Soft tokens enable authentications anywhere. If a user can’t receive an SMS or push authentication on mobile or desktop because they’re offline or out of data, they can still login using time‑based one‑time password (TOTP).
TOTP tokens are generated from a device specific shared secret. Allowing you to make risk decisions per device compared to device agnostic means of authentication such as SMS and Voice.
SMS, Voice, and Email are ubiquitous forms of both communication and authentication, allowing you to reach a massive audience without any onboarding barriers.
SMS, Voice, and Email auth are a vast improvement from using a password alone, giving you both global reach and reliability.
Overview
Authentication is the lock on the front door of your app. We’re the best locksmiths in town. Authy’s powerful API delivers you unparalleled security and a seamless user experience.
Authy solves security challenges that are invisible to the untrained eye, handling variables across carriers, devices, locales, and frameworks. Authy solves hard problems, but integrates easily.
Securing customers requires context. Passwords alone won’t cut it. Authy works across all platforms and operating systems to validate logins with contextual data bad actors can’t fake.
Features
Authenticate with the most common channel, SMS and Voice.
Authenticate users with OTP sent via Email.
Authentication that's more secure than SMS/Voice and works offline.
Give user control over the authenticator app they want to use
Most secure and user friendly form of authentication, allows for a true passwordless experience.
We build the client apps so you don't have to. They are in use by millions of users.
Ease of use across mobile and desktop, allowing for recovery when mobile devices lost or stolen.
Unlike Google Authenticator which loses all tokens if device is lost or app uninstalled, Authy securely backs up your 2FA data.
Embed the TOTP or push authentication experience into your own mobile applications.
Offline authentication via the Authy app or the Authenticator SDK.
Risk based authentication using up to date device data.
SOC2 compliant since 2016.
Push authentication offer the most secure authentication option.
Prevent the 2FA SMS from being delivered to web portals, only trusted handsets.
Global monitoring for carries filtering and changing regulations.
Translated text and voice messages based on the country code of the user's phone.
Hundreds of managed numbers, regional specific.
Built in management of codes and IDs.
Web based reports or detailed information via a reporting API or webhooks.
We support your users when they use the Authy app for their 2FA.
Pricing
Security isn’t one‑size‑fits‑all. You need a solution tailored to your business. Authy offers flexible pricing plans for your use case, your volume, and your needs.