Out-of-band authentication

KZero Staff
Oct 17, 2023

Out-of-band authentication, or OOBA, is a form of two-factor authentication that typically uses two communication channels to verify identity and grant a user access to a system. The two communication channels typically combine a computer and a smartphone. It is an additional layer of security and is used across various industries, mainly in the financial sector.

How Does Out-Of-Band Authentication Work

Out-of-band authentication works when two different communication channels verify a user’s identity, and the main channel is the one the user uses to access a system, which can be a mobile app or web browser. The secondary medium, such as a phone call or email, acts as a separate communication channel.

Users must enter their username and password on the primary channel to use out-of-band authentication. Then, the system sends a one-time password to the user’s secondary channel, and they must enter the one-time password on the primary channel to complete the authentication process.

Examples of Out-Of-Band Authentication

Below are some examples of out-of-band authentication:

  • A user receives a one-time password through text message or email to complete a login into a bank account.
  • A user calls their banking institution to verify a large purchase.
  • A user utilizes a physical security key to log into a computer.

Advantages of Out-Of-Band Authentication Work

Out-of-band authentication can provide some benefits that include:

  • Reduced risk of theft of credential
  • Mitigation of Man-in-the-Middle Attacks
  • Multi-factor authentication
  • Resistance to phishing attacks
KZero Staff

Explore more insightful content from the knowledgeable KZero staff on our blog and guides section.

Glossary Terms

Stay up to date with the most recent #infosec topics

Trending Topics

Interested In
Next-Gen MFA?

Discover Multi-Pass enterprise passwordless authentication

Share the page: