Two-Factor Authentication (2FA) adds an essential extra layer of security to your Atlas Market account. Even if your password is compromised, 2FA prevents unauthorized access. This guide covers both TOTP and PGP 2FA methods.
⚠️ Mandatory: Atlas Market requires 2FA for all accounts. Enable it immediately after registration to protect your funds and personal data.
Table of Contents
🔐
1. What is Two-Factor Authentication?
2FA requires two different authentication methods to verify your identity:
- Something you know: Your password
- Something you have: Your phone (TOTP app) or PGP private key
Available 2FA Methods:
✓ TOTP (Time-based One-Time Password)
Uses authenticator apps like Aegis, Raivo OTP, or Authy. Generates 6-digit codes that change every 30 seconds. Recommended for beginners.
🔑 PGP 2FA
Uses your PGP private key to decrypt a challenge message. Most secure but requires PGP knowledge. Recommended for advanced users.
📱
2. TOTP 2FA Setup (Recommended)
Step 1: Choose Authenticator App
📱 Aegis Authenticator (Android - Recommended)
Open-source, encrypted backup, offline, no cloud sync. Most secure option for Android.
🍎 Raivo OTP (iOS - Recommended)
Open-source, encrypted iCloud backup optional, privacy-focused.
💻 KeePassXC (Desktop)
Password manager with built-in TOTP. Good for desktop-only users.
⚠️ Avoid: Google Authenticator (no backup), SMS 2FA (insecure, SIM swapping risk), Authy (cloud-based, privacy concerns)
Step 2: Enable TOTP on Atlas Market
- Login to Atlas Market → Go to Settings → Security
- Click "Enable TOTP 2FA"
- You'll see a QR code and a secret key (text string)
- Open your authenticator app → Add new account → Scan QR code (or manually enter secret key)
- Enter the 6-digit code from app to verify setup
- SAVE backup codes displayed on screen (write down or screenshot)
💡 Pro Tip:
Save the secret key in your password manager as backup. If you lose your phone, you can recreate the TOTP entry using this key.
🔑
3. PGP 2FA Setup (Advanced)
PGP 2FA requires you to decrypt a challenge message with your private key during each login. Most secure but slower than TOTP.
Prerequisites:
- PGP key pair generated and uploaded to Atlas Market
- Kleopatra (Windows), GPG Suite (macOS), or GnuPG (Linux) installed
- Understanding of PGP encryption/decryption
If you haven't set up PGP yet:
Complete PGP Tutorial →How PGP 2FA Works:
- You enter username and password
- Atlas Market displays PGP-encrypted challenge message
- You decrypt message using your private key
- Enter decrypted text to complete login
To enable: Settings → Security → Enable PGP 2FA. Ensure your PGP public key is uploaded first.
💾
4. Backup & Recovery
🚨 Critical: If you lose access to your 2FA device and don't have backup codes, you will permanently lose access to your account and funds. There is NO recovery method.
Backup Strategies:
-
✓
Save Backup Codes
Write down all backup codes when first enabling 2FA. Store in secure offline location.
-
✓
Save TOTP Secret Key
Store the secret key (text string) in encrypted password manager. Can recreate TOTP entry if needed.
-
✓
Backup PGP Private Key
Export private key to encrypted USB drive. Store in safe location.
-
✓
Multiple Backup Locations
Store backups in 2-3 separate secure locations (not digital).
✅
5. Security Best Practices
✓ DO:
- Enable 2FA immediately after registration
- Use offline authenticator apps (Aegis, Raivo OTP)
- Keep backup codes in multiple secure locations
- Test 2FA login before depositing funds
- Update 2FA if you change phones
❌ DON'T:
- Never use SMS 2FA (SIM swapping risk)
- Don't use cloud-based authenticators
- Never share 2FA codes with anyone
- Don't store backup codes digitally unencrypted
- Never disable 2FA unless changing methods
🎯 Quick Summary
- Enable 2FA immediately – it's mandatory for account security
- TOTP recommended for beginners – use Aegis or Raivo OTP
- PGP 2FA for advanced users – maximum security
- Save backup codes – critical for account recovery
- Test before depositing – verify 2FA works correctly
- Never use SMS 2FA – vulnerable to attacks