Introduction

As a core function, Zivver tries to ensure that all recipients of Zivver messages go through a two-factor authentication (2FA) process before accessing their Zivver messages. The sender must share this second authentication factor (in the form of a numeric code or other secret string) with the recipient. Supported recipient authentication methods are as follows:

Verification completed

Existing Zivver account

One method is available for sending secure messages to existing Zivver users:

• Zivver account - If the recipient has a Zivver account, this method is automatically chosen, since all Zivver accounts are protected with 2FA already. The recipient can read the message right away.

Verification level 3

Verification by SMS

An access code is sent via SMS when the recipient requests it. Available methods are:

• SMS to new number - Choose this method if you know the mobile phone number of the recipient but the recipient doesn’t have a Zivver account. The recipient will receive a numeric code via SMS and must fill it in a form to open the message. Unlike with most other authentication methods used by Zivver, the sender does not need to choose a code - it is chosen automatically by Zivver in a secure manner.
• SMS to phonenumber - Choose this method if you want Zivver to send a new code via SMS to a recipient’s phone number that is already known. The recipient will receive a numeric code via SMS and must fill it in a form to open the message. Unlike with some other authentication methods used by Zivver, the sender does not need to choose a code - it is chosen automatically by Zivver in a secure manner.

Read more on how to open a Zivver message when you have received an access code via SMS.

Verification level 2

Verification by access code

The sender shares with the recipient (by telephone or other means) a code which can be used to open Zivver messages. The code should not e-mailed, as this would severely degrade the security of the message. Available methods are:

• Set up organization access code - Choose this method if you wish to have one access code usable by all senders within your organization when communicating with a specific recipient. When the recipient receives the Zivver message, they will be asked for the code, so make sure to communicate the code to recipients prior to sending any Zivver messages.
• Organization access code code - Choose this method if you want your recipients to be able to use an existing access code that your organization has previously set up for them. When the receiver receives the Zivver message, they will be asked for the code.
• Access code - Choose this method if you don’t have the recipient’s mobile phone number, but you do have some other way of contacting the recipient, other than e-mail. Choose a code, enter the code and communicate it to the recipient by a method other than email. When the recipient receives the Zivver message, they will be asked for the code.
• Access code code - Choose this method if you want the recipient to be able to use an access code that you have already sent to them by other means. When the recipient receives the Zivver message, they will be asked for the code.

Read more on how to open a Zivver message when you have received an access code.

Verification level 1

Verification by email

This method should be used if none of the others is practicable:

• Verification email - Choose this option only if you can’t use any of the options above. Zivver will send an access code by email. The recipient can open their Zivver message using an access code that they receive in the verification e-mail. The code is valid for one time use, however the recipient can request another verification email, containing a new code, to open their message again. This is the least secure method.

Read more on how to open a Zivver message when you have received a verification e-mail.