Authy vs ORY Hydra

Overview

Authy

Stacks162

Followers174

Votes1

ORY Hydra

Stacks23

Followers157

Votes8

GitHub Stars16.6K

Forks1.6K

Authy vs ORY Hydra: What are the differences?

Developers describe Authy as "The easiest way to add Two-Factor Authentication to any website or app". We make the best rated Two-Factor Authentication smartphone app for consumers, a Rest API for developers and a strong authentication platform for the enterprise. On the other hand, ORY Hydra is detailed as "Secure access to your applications and APIs". It is a self-managed server that secures access to your applications and APIs with OAuth 2.0 and OpenID Connect.

Authy and ORY Hydra belong to "Security" category of the tech stack.

Some of the features offered by Authy are:

Very secure- We take security seriously. We use industry standard secure algorithms (HMAC RFC 4426) and 256 bits keys which are always encrypted at rest.
Fully redundant- The Authy API is deployed accross different PCI level 1 data-centers and it's fully redundant. We also use a DNS provider with anycast support. We've had 100% availability since 2011.
Great user experience- You connect to Authy using a transparent REST API which allows you to customize the experience you want for your users.

On the other hand, ORY Hydra provides the following key features:

OAuth 2.0 Authorization Server
OpenID Connect certified
Flexible User Management

🔥 Trending in Security on StackShare

Tirreno

Security

tirreno

Try it View Docs Alternatives

Try

0

2

Detailed Comparison

Authy	ORY Hydra
We make the best rated Two-Factor Authentication smartphone app for consumers, a Rest API for developers and a strong authentication platform for the enterprise.	It is a self-managed server that secures access to your applications and APIs with OAuth 2.0 and OpenID Connect. It is OpenID Connect Certified and optimized for latency, high throughput, and low resource consumption.
Very secure- We take security seriously. We use industry standard secure algorithms (HMAC RFC 4426) and 256 bits keys which are always encrypted at rest.;Fully redundant- The Authy API is deployed accross different PCI level 1 data-centers and it's fully redundant. We also use a DNS provider with anycast support. We've had 100% availability since 2011.;Great user experience- You connect to Authy using a transparent REST API which allows you to customize the experience you want for your users.;Fully mobile- We support any cellphone. We provide apps for all major phones (iPhone and Android) as well as text-messages for other cellphones.;No expensive & complex setups- Hardware dongles, servers, software licenses, setup costs...It's 2013, forget all that. Authy is bringing two-factor authentication to the present.	OAuth 2.0 Authorization Server;OpenID Connect certified;Flexible User Management;High Performance;Developer Friendly
Statistics
GitHub Stars -	GitHub Stars 16.6K
GitHub Forks -	GitHub Forks 1.6K
Stacks 162	Stacks 23
Followers 174	Followers 157
Votes 1	Votes 8
Pros & Cons
Pros 1 Google Authenticator-compatible Cons 2 Terrible UI on mobile	Pros 4 Open-source 2 Scalable 2 Fully customizable
Integrations
WordPress CloudFlare	ORY Kratos Docker Node.js JavaScript TypeScript Golang Ruby Python Java PHP

What are some alternatives to Authy, ORY Hydra?

Auth0

A set of unified APIs and tools that instantly enables Single Sign On and user management to all your applications.

Stormpath

Stormpath is an authentication and user management service that helps development teams quickly and securely build web and mobile applications and services.

Keycloak

It is an Open Source Identity and Access Management For Modern Applications and Services. It adds authentication to applications and secure services with minimum fuss. No need to deal with storing users or authenticating users. It's all available out of the box.

Let's Encrypt

It is a free, automated, and open certificate authority brought to you by the non-profit Internet Security Research Group (ISRG).

Devise

Devise is a flexible authentication solution for Rails based on Warden

Firebase Authentication

It provides backend services, easy-to-use SDKs, and ready-made UI libraries to authenticate users to your app. It supports authentication using passwords, phone numbers, popular federated identity providers like Google,

Sqreen

Sqreen is a security platform that helps engineering team protect their web applications, API and micro-services in real-time. The solution installs with a simple application library and doesn't require engineering resources to operate. Security anomalies triggered are reported with technical context to help engineers fix the code. Ops team can assess the impact of attacks and monitor suspicious user accounts involved.

Instant 2FA

Add a powerful, simple and flexible 2FA verification view to your login flow, without making any DB changes and just 3 API calls.

Amazon Cognito

You can create unique identities for your users through a number of public login providers (Amazon, Facebook, and Google) and also support unauthenticated guests. You can save app data locally on users’ devices allowing your applications to work even when the devices are offline.