I create this from my tread in the local board:
Here through several revisions and discussions.
Some exchange accounts, social media, and several other accounts, there are some differences authentication to log in. From this it can be concluded about the fundamental differences in the security system on several accounts that I made.
1. Traditional Authentication Thi is only use a username / account email address combination password.
2. Two Factor AuthenticationThis is Authentication used by many people in the crypto, Verification of ownership using OTP (one time password) additional authentication, or we usually call it 2fa. So in the authentication system using username password an then passcode or token from another device (Yubikey, GA / Authy or others), this process matches our code and the server.
3. Two Step VerificationAlmost similar 2fa. But I think this is different. The Two Step Verification use pasword/username and code or link Verification from server, this code was sent via short messages, emails or etc. The difference with 2fa the server gives us the code, this code only the server knows, whereas our 2fa has the same code and only needs to match.
Of the three security when log in account, I found several other combinations >> username / password> 2FA> 2SV but this happens if the IP is different, example if you log in Indodax Exchange or Bittrex. I think this combinations security authentication is good, if applied to all websites relating crypto asset and other website relating to important data.