The GitHub platform will soon strengthen its security by imposing two-factor authentication on its users.
A few weeks after a leak of identifiers on GitHub, the platform has just announced that it was going to tighten the screw in terms of security.
GitHub: double authentication soon to be mandatory
Today, the GitHub platform has nearly 94 million users. If you had never heard of this name before, know that it is an open source hosting service that notably allows developers to manage and share the source code of their project. In 2018, a decade after its launch, GitHub became the property of Microsoft.
Soon, the login process on GitHub will be further strengthened. Indeed, users of the platform will be required to enter a single-use code from next year. It is more precisely from March 2023 that double authentication will begin to be deployed. This initiative obviously aims to make GitHub a more secure tool and where users can feel more confident about the quality of the code they download, as reported to us by the site BleepingComputer.
2FA on GitHub: conditions and deployment
Activating this feature will require prior manipulation on your part. You will first receive an email and then have 45 days to activate two-factor authentication. Once this deadline has passed, users will receive a final and final reminder (they will then have an additional week) before being deprived of access to GitHub. As you will have understood, the activation of double authentication will therefore indeed become mandatory from next March if you wish to continue to benefit from the service.
Regarding its deployment, note that it will be done in several stages. Those who have contributed to the most important code repositories or who are considered critical, administrators of companies and organizations, or developers who have published applications or packages, will be the first to be able or rather to have to enable two-factor authentication on GitHub.
Anyway, the Microsoft company seems determined to strengthen the security of GitHub. All accounts will therefore have to activate two-factor authentication from next year for an ever more secure workspace.
Source : BleepingComputer
27