Comparing 2FA methods: SMS, apps, and TOTP

Pros and cons of common two-factor authentication methods.

SMS 2FA

Easy to enable, but vulnerable to SIM-swap and delivery delays.

Authenticator apps

More reliable than SMS and independent from carrier availability.

TOTP links and web workflows

Useful in internal workflows when access control is handled properly.