Authenticator App

Authenticator App generates the time-based and counter-based one-time codes you need to sign in to your online accounts with two-factor authentication. Every secret stays on your device, encrypted with hardware-backed keys.

Add your accounts by scanning the QR code your service provides, or by typing in the setup key manually. The app reads QR codes locally on your phone — no image is ever uploaded.

WHY AUTHENTICATOR APP
• Works fully offline. Codes are generated on-device, no internet needed to sign in.
• Hardware-backed encryption. Every account secret is encrypted with AES-256/GCM using a key stored in the Android Keystore. The key never leaves the device.
• Open standards. TOTP (RFC 6238) and HOTP (RFC 4226) — the same algorithms used by industry-standard authenticators, compatible with any site that supports them.
• On-device QR scanning. Camera frames are processed locally and discarded.
• Encrypted backup. Export an AES-GCM encrypted backup file protected by a passphrase you choose, restore it whenever you reinstall the app. There is no cloud account and no server — you stay in control.

ADD ACCOUNTS YOUR WAY
• Scan the QR code on the service's two-factor setup screen.
• Or paste the setup key and customize digits, period, algorithm, or counter as needed.
• Edit names later, swipe to delete, search across your list as it grows.

THE CODES YOU NEED
• 6, 7, and 8-digit codes.
• SHA-1, SHA-256, and SHA-512 algorithms.
• 15, 30, or 60-second periods.
• Counter-based (HOTP) codes for services that require them.
YOUR DATA, YOUR DEVICE

• No account, no signup, no server. The app does not collect any personal information.
• Account secrets are never uploaded.
• Android auto-backup is disabled for this app, so secrets cannot leak through the system backup flow.
• Copied codes are marked sensitive on Android 13+ so they don't appear in the paste preview, and are cleared automatically 30 seconds after you copy them.