The codes are generated from a secret key that is shared between the service you are using (like Kraken) and your device, as well as the current time.The secret key provided at the time of download is all that is needed for backup.Note: authenticator apps are not tied in any way to your SIM card or phone number and that improves security by protecting your account from SIM swapping.

There are a variety of authenticator apps that you can download for your smartphone.A popular example is Google Authenticator, which can be found in Google Play and the iOS App Store.

Be sure to enable remote locking and erasing of your smartphone in case you ever lose it.

The Google Authenticator app was used to store one time password on only the primary device. This meant that if you lost access to your device, you would not be able to access any of your accounts secured with the 2FA mechanism. Now, the Account Synchronization feature for Google Authenticator lets you backup your 2FA codes to the cloud which allows you to access the code from other devices.

While this feature is a convenient option, it can leave you vulnerable to risks. Anyone who has access to your Google Account device may easily access any 2FA code synched to it and gain access to all associated accounts.

You can disable this feature by following these steps: 

To ensure your Kraken account and email is as secure as possible, please review the steps in this support article: Securing your email address 

While an authenticator app is a secure and convenient option that is used by many of our clients, it is still vulnerable to phishing due to the 30-second window.

Passkeys and Hardware Security Keys are considered to be both more convenient and more secure.