Google and Microsoft Authenticators are already well-established, but the newly released Proton Authenticator might be worth the switch. Proton, the company behind Proton Pass, our top password manager for privacy-conscious users, also offers Proton Mail and Proton VPN. While Proton Pass has an integrated two-factor authentication (2FA) feature in its premium tier, Proton Authenticator is available for free, regardless of the password management service you use.
**How Proton compares to other authenticator apps**
Functionally, Proton Authenticator is similar to other popular apps like Google Authenticator, Microsoft Authenticator, Duo, and Authy. Users can add time-based one-time passwords (TOTPs) manually or by scanning a QR code, and import existing codes from compatible authenticator apps (Google does, Microsoft does not). In testing, it was easy to capture and save QR codes from Google Authenticator and upload them into Proton Authenticator, quickly populating all of the codes.
For added security, Proton Authenticator supports biometric locking, like Face ID, and can hide codes from view—useful for copying and pasting on the same device. Codes refresh every 30 seconds, showing both the current and next TOTPs. Unlike most authenticators limited to iOS and Android, Proton supports Windows, macOS, and Linux with encrypted syncing between devices.
While authenticator apps are largely similar, Proton Authenticator’s potential advantage is its origin from a privacy-first company. Being open source, it includes no ads or tracking, making it an attractive option for those wanting to avoid Google and Microsoft services. Bitwarden, another excellent open-source password manager, also offers a free standalone authenticator app.
Given the frequency of data breaches and the prevalence of phishing schemes, it’s essential to have multi-factor authentication (MFA) enabled on accounts. Some methods—like SMS codes—are still vulnerable to phishing techniques like adversary-in-the-middle attacks. Biometrics and hardware keys are more secure, but an authenticator app is preferable to SMS because TOTPs are generated locally on your device, changing every 30 to 60 seconds, rather than being sent via unencrypted text.