• http://www.cleanpagedesign.co.uk Dom Wint

    This looks really great. I’ve just been writing about securing a WordPress site. I’ll add this to my list of suggested security plugin.

  • AmbientGuy

    What happens when the Clef servers get hacked and all the user data is stolen?

    • http://www.juliekuehl.com Julie

      Hey Ambient Guy,

      There’s no data stored on the Clef servers, it’s all kept on your device. Only thing sent is a one-time-use digital key. So there’s really nothing to hack, and nothing to gain even if it did happen. Check out getclef.com for all the details that I didn’t get into.

      • AmbientGuy

        Thanks Julie. The description above suggested there was more involvement from the server. Thanks for clarifying.

  • Lane Lester

    Very cool! I don’t have a smartphone, but the app worked fine in my iPad. I just put it on a test site for now, but I may offer it to my clients later.

  • aid

    “Many times, the something you know is your email, account number, or username. ” Er, no. They’re public information – the something you know is typically your password.

  • aid

    Also, if “Clef works with WordPress sites to allow authentication without a password. ” is true – then this is not two-factor authentication but one-factor auth with your phone as that one factor.

    • http://www.juliekuehl.com Julie

      Yeah, you’re right. My bad. The getclef.com site will have the specifics.