New Online Security
Reading Time: 2 MinutesLast Updated: November 3, 2023
We’ve added an extra layer of security for our customers when they interact with us online. Now, my Social Security account holders are required to use their cell phone — in addition to their username and password — as another authentication factor during online registration and every sign in. An authentication factor is information used to determine if someone is who they claim to be.
This extra layer of security is called “multifactor authentication” and complies with an executive order requiring federal agencies to provide more secure authentication for their online services. Any agency that provides online access to a customer’s personal information must now use multifactor authentication.
Since my Social Security became available in May 2012, almost 26 million people have created an account. We have always offered multifactor authentication, but only for customers who opted for extra security. For your protection, we now require multifactor authentication for all my Social Security users. To register and sign in, you must now enter a security code that we will send to your cell phone. Your cell phone provider’s text message and data rates may apply.
Our research shows that an overwhelming majority of American adults have cell phones and use them for texting. Because of technical and resource constraints, we are not currently able to offer alternative methods of satisfying this security requirement. However, we may consider adding more options in the future. We appreciate your patience as we work continuously to secure your online information.
We’re committed to using the best technologies and standards available to protect our customers’ data. Multifactor authentication is just one of the ways we’re ensuring the safety and security of the resources entrusted to us. Visit my Social Security to learn more about this helpful suite of online services, including additional details about our latest security measures.
Did you find this Information helpful?
Tags: my Social Security, my Social Security account
See CommentsAbout the Author
Jim Borland, Assistant Deputy Commissioner, Communications
Jim Borland, Assistant Deputy Commissioner, Communications
Comments
Comments are closed.
michael l.
I don’t have a cell phone. Now I have to go get one????? All my banks use a land line to confirm identity. Why can’t you?
Patrick E.
I can see a common idea here, everyone does not have a text enabled cell phone. We are retired and on limited incomes. Seems to me sending a code in the mail (everyone has a mail box) with a 10 day limit, sending it by phone (my bank does that) or sending the code via email (best idea in my view, my IRA institution does that) would have been a good start. Take a lesson from the banks and other financial institutions it is not that hard. If I was 25 years old and used my phone for everything this update might work well. Come on SS get out of your glass tower and look at who you serve and develop good sense policy that everyone can use.
Tyron W.
This vicious act was done intentionally by mean-spirited, arrogant millennials who hate seniors. Its is actually a form of age discrimination forbidden by federal law.
Martin
My Chase Bank account offers the option of text or email to receive codes. Can’t the SSA simply do the same?
Linda D.
My account is now safe from me because I do not have text. Pretty sure it isn’t much safer from hacker tho. Soc sec Office may get tired of seeing us to check our acct . when we retire and when we move
concernedcitizen
How about all those seniors with low vision issues, really you are going to require them to use a cell phone sized screen to try and read a TEXT!! The directive said make it more secure not shut a portion of your customers out of this service!!!
concernedcitizen
I have numerous sites I use that are secure that do not require texting. One of my banks will call me on my home phone and speak a code to me. Another will send me an email that contains the code. To require texting is crazy and you are bringing this senior rage upon yourself by not thinking this through.
Barb
Apparently the government, who claims to understand the financial situation of us common people that don’t live in DC and work for them, doesn’t get the fact, or care, that all of us don’t have or want cell service and text. Maybe they should provide us all with one along with the service. The last time I checked it was 5% or more of my SSA benefit per month depending on the service I would use. Oh, and it’s not available at home.
Tim J.
SSA’s implementation of 2FA is still pretty poor. After the initial login when they now ask for your cell number, on subsequent logins they present that number (last 4 digits), but then offer you a chance to provide a different number to replace the one they have for you. This is no security at all. If your userid/password has not been compromised, their 2FA offers no additional security. If your userid/password has been compromised, letting the bad guy substitute his number for yours makes their 2FA worthless.
A 2FA like Google Authenticator which does not require the transmission of data is a much better solution than text messaging.
But, regardless of the method used, the most important detail is verification that the initial set up is done with the person authorized to the SSA account.
Omar M.
An outrageous cockamamie idea probably hatched by some thirty year old bureaucrat who has not a clue how this idiotic procedure will impact SENIORS! Hey, guys, where have you been? Do you realize seniors with crooked thumbs, who are not capable to text, let alone handle a cell phones can NOT comply with your idiocy? Wow, SS, just one more black eye on your agency and the Obama administration!!!!