Built-in 2FA Authenticator

TorrinPass includes a fully integrated Two-Factor Authentication (2FA) authenticator that generates time-based one-time passwords (TOTP) for all your accounts—right alongside your passwords.

Why Built-in 2FA Matters

Most password managers require you to use a separate authenticator app like Google Authenticator or Authy. TorrinPass eliminates this friction by integrating 2FA directly into your password vault.

Benefits

• One app for everything — Passwords and 2FA codes in one place
• Works offline — Generate codes without internet connection
• Encrypted storage — Your 2FA secrets are protected with the same AES-256-GCM encryption as your passwords
• Automatic organization — 2FA codes appear alongside their associated passwords

---

How It Works

The Technology: TOTP

TorrinPass uses TOTP (Time-based One-Time Password), the industry-standard 2FA method used by:

• Google
• Microsoft
• GitHub
• Amazon
• Banks worldwide

TOTP generates a new 6-digit code every 30 seconds based on:

1. A shared secret (stored encrypted in TorrinPass)
2. The current time

Security Architecture

Your 2FA Secret
      ↓
Encrypted with AES-256-GCM using your MEK
      ↓
Stored locally in Core Data
      ↓
Synced (encrypted) to cloud

• Zero-Knowledge — Your 2FA secrets are encrypted with your Master Encryption Key (MEK)
• Local Generation — Codes are generated on your device, not on servers
• Time-Synchronized — 30-second windows with ±30 second tolerance for clock drift

---

Setting Up 2FA

Step 1: Enable 2FA on a Website

1. Go to the website’s security settings
2. Enable Two-Factor Authentication
3. The website will show a QR code

Step 2: Add to TorrinPass

1. Open TorrinPass
2. Find the password entry for that website
3. Tap Add 2FA
4. Scan the QR code or enter the secret manually

Step 3: Verify

1. TorrinPass will show a 6-digit code
2. Enter this code on the website to confirm setup
3. Save your backup codes (provided by the website)

---

Using 2FA Codes

When logging into a website that requires 2FA:

1. Open TorrinPass
2. Find the password entry
3. The current 2FA code is displayed automatically
4. Tap to copy, or use AutoFill

The code refreshes every 30 seconds. A countdown indicator shows when the next code will appear.

---

Backup Codes

TorrinPass also stores backup codes for your 2FA-enabled accounts:

• 10 backup codes generated during 2FA setup
• Each code can only be used once
• Store these securely in case you lose access to your device

Important

If you lose your device AND don’t have backup codes, you may be locked out of your accounts. Always save your backup codes in a secure location.

---

Offline 2FA

Unlike many authenticator apps, TorrinPass generates 2FA codes completely offline:

• No internet required
• No server communication
• Works in airplane mode
• Works in areas with no signal

This is possible because TOTP only needs:

1. The shared secret (stored locally)
2. The current time (from your device)

---

Supported Services

TorrinPass works with any service that supports TOTP-based 2FA, including:

• Social Media — Google, Facebook, Twitter/X, Instagram, LinkedIn
• Email — Gmail, Outlook, ProtonMail
• Development — GitHub, GitLab, Bitbucket, AWS, Azure
• Finance — Banks, PayPal, Coinbase, Robinhood
• Shopping — Amazon, eBay, Best Buy
• Gaming — Steam, Epic Games, PlayStation, Xbox
• And thousands more…

---

Why Not Use a Separate Authenticator?

Aspect	Separate App	TorrinPass Built-in
Apps needed	2 (password manager + authenticator)	1
Context switching	Required	Not needed
Backup complexity	Two separate backups	One unified backup
Encryption	Varies	AES-256-GCM
Offline support	Usually yes	Yes

---

Get Started

Ready to simplify your 2FA workflow? Download TorrinPass and add 2FA to your first account today.

Download on App Store