UNLOQ comes in the shape of a widget, which you can easily embed into your site, and a companion mobile app that your users will need, in order to authenticate. The default authentication mechanism is a multi-factor system that uses out of band communication to authenticate a user. After a user has registered with UNLOQ (downloaded the app and created a profile), he will only have to click the UNLOQ button and, in a fraction of a second, he will receive a push notification on his mobile phone, asking the user to approve or deny the authentication request. To prevent spam, each user will be asked to verify his/her identity when sending their first authentication request from a browser. For the first authentication request, the user will receive a notification asking for a time-based one time password that they can find in the app.
And this takes us to the alternative authentication methods that UNLOQ allows. The first one is a time-based one time password that users can select, in case they don’t have internet access on their phone. The second one is the e-mail login option that can be used in case the user does not have a smartphone. Developers may choose to have one, both or none of the alternative authentication mechanisms implemented, depending on the specific case for which they are building the system for.