Switching from SMS to an authenticator app is one of the best security upgrades you can make. But not all authenticator apps are equal — they differ on backup options, security model, and ease of use. Here's how the top options compare in 2025.
What to look for
- Encrypted backup — what happens if you lose your phone?
- Open source — can the security be independently verified?
- Multi-device support — can you access codes from multiple devices?
- No cloud storage of seeds — does the app upload your secret keys anywhere?
🥇 Aegis (Android) — Best overall
Open source, fully offline, encrypted local backup. No cloud, no accounts, no tracking. The gold standard for Android users who prioritise security.
🥇 Raivo OTP (iOS) — Best for iPhone
Open source, iCloud backup with end-to-end encryption. Clean interface, actively maintained. Our top pick for iOS.
🥈 Authy — Best for multi-device
Encrypted cloud backup, works across all your devices. Closed source and requires a phone number, but the backup system is genuinely useful for most people.
⚠️ Google Authenticator — Use with caution
Now offers Google account backup, which is convenient but means your 2FA seeds are in Google's cloud. Acceptable if you fully trust and secure your Google account.
Setting up a new authenticator app
- Install your chosen app
- Go to each account's security settings and find the 2FA/authenticator option
- Scan the QR code with the app
- Save the backup codes provided — store these offline, they're your recovery if you lose the app
- Confirm the setup by entering a code from the app
⚠️ Save your backup codes: If you lose access to your authenticator app and have no backup codes, you can be permanently locked out of your accounts. Write them down and store them somewhere safe — not on your phone.
✅ This weekend: Install Aegis (Android) or Raivo (iOS), then migrate your three most important accounts — email, password manager, bank — from SMS to authenticator app. Takes about 15 minutes total.