Multi-factor authentication with TOTP/Google Authenticator
Kentico should change its multi-factor-authentication to use industry-standard methods rather than its current custom implementation.
Kentico currently offers multi-factor authentication using the Kentico Authenticator Android application. This is a non-standard tool, and is entirely useless for people without an Android device. As a result, multi-factor authentication cannot be broadly deployed and is all-but-useless in a real-world environment.
Kentico should instead use the industry-standard TOTP method. TOTP is based on an IETF standard, and has been implemented by Microsoft, Google, DropBox, GitHub, Yahoo, and hundreds of other organizations. It supports key generation across all platforms and using hardware-based devices, including Google Authenticator, Authy, OnePassword, YubiKey and more.
While Kentico could create an iPhone/Windows Phone/Mac/PC/etc. version of its authenticator application, this would still force users to install additional software, and would be less trustworthy than a broadly supported standard endorsed by major technology and financial companies.