Password management
What is the best practice to authenticate?
If available, use Two-Factor Authentication (2FA), which will send a code to your mobile phone by SMS.
This will increase the security of your online account, because you are the one who owns the mobile phone.
The user enters a username and password.
An authentication code is sent to the user's mobile phone.
The user enters the authentication code to log into the application.