Boost OTP Conversions with Verify API

Verification and authentication are typically used interchangeably, but they aren’t the same thing. Verification occurs at signup. It ensures that a user is who they say they are. Authentication occurs every time a user logs in. Plivo Verify can be used for both verification and authentication.

Both are great options, but they have different benefits.

• SMS verification is fast and easy for users to complete.
• SMS verification has great reach: almost all mobile devices support SMS functionality.
• Voice verification provides an accessible alternative for individuals who may have visual disabilities.
• Voice verification works best for customers who only have access to a landline, as landlines don’t support SMS.
• Voice verification can be a reliable alternative or fallback in cases of delays or failures in SMS delivery. Voice is prioritized on carrier networks, resulting in higher delivery rates compared to SMS.
• Voice offers significantly richer data points for analytics, enabling users to gain deeper customer insights and optimize conversions.

Two-factor authentication, or 2FA, refers to the use of two different types of authentication factors to verify a user's identity. These factors can come from any of the following three categories.

• Something you know: This could be a password, PIN, or the answer to a security question.
• Something you have: This could be a smartphone (to receive an SMS or use an authenticator app), a smart card, or a hardware token.
• Something you are: This refers to biometric data, like a fingerprint, facial recognition, or retina scans.

A one-time password (OTP) is valid for only one login session or transaction, and it relies on something you have. After entering a password (something you know), you might be sent an OTP via SMS to your phone (something you have), which you must then enter to gain access.

SMS verification adds an extra layer of security by using two-factor authentication (2FA) to verify users’ identities. SMS verification helps ensure that the person trying to access the account or register for the service has a mobile device tied to that account. This can help prevent unauthorized access, even if someone gains access to the user's username and password.

Here are the steps in the SMS verification process:

1. A user provides their mobile number to log in to an account or register for a service.
2. The system then sends a request to Plivo to initiate the SMS verification process for that mobile number.
3. Plivo generates a one-time password OTP) — a unique code that can be used for this one instance for verification.
4. The OTP is sent via SMS to the user's mobile number. Plivo also keeps a copy of the OTP to check it against the user's input.
5. The user receives the OTP in an SMS message on their phone and enters the OTP into the website or application to which they’re trying to log in or sign up.
6. The user’s entry is is sent to Plivo. Plivo verifies whether it matches the OTP that was originally generated and sent to the user.
7. If the OTPs match, Plivo verifies the user. If not, Plivo may resend the OTP,or the user may have to initiate the process again.
8. Once the user is verified, they can proceed to log in to their account or complete their registration.