/The developer conference by Twilio$671 until 5/23

Sendgrid Moved from Homegrown 2FA to a Future Proof API

How SendGrid decided to purchase their Two-Factor Authentication (2FA) solution as a cloud API from Twilio.

Learn More

Sendgrid Moved from Homegrown 2FA to a Future Proof API

Don’t build your own 2FA solution, it’s expensive and will incur a lot of maintenance long term. Listen to Jensen Stava, product manager at SendGrid, on how they replaced a self developed, complex SMS based 2FA with the Authy API.

SendGrid is the leading cloud based email delivery service, sending over 25 billion emails each month for web and mobile-based customers. SendGrid initially added 2FA integration by building it themselves, but after a few years of maintenance issues and painful support problems, they were spending too much time and money. Jensen Stava (Product Manager) realized the benefits of buying a 2FA service and integrated the Authy API, watch this video to learn more from Jensen about why they moved off their own homegrown solution.

Short on time? Here are the top takeaways:

In the words of product manager Jensen Stava, “Security is crucial to email, because email has traditionally been heavily exploited. Spammers and phishers have been around for a very long time.” Here are a few webinar highlights:

  • Without the Authy APIs, rapid growth and user model changes would require SendGrid to overhaul their database, rewrite their 2FA from scratch, and take on a lengthy and expensive end-to-end implementation.
  • Offline 2FA is imperative. SendGrid’s initial 2FA was SMS-based, limiting user access from overseas or when traveling by air.
  • Updating a homegrown 2FA solution requires developers to be experts in all new security offerings. With Authy, updates requires minimal investments: just call a few new APIs.
  • Implementation is very simple, even without using Authy’s helper libraries on GitHub.