How to Verify Account on BitForex

How to setup Google Verification on BitForex

1. Download "Google Authenticator" on your phone. IOS users can download this app from APP Store and users with Android devices could download it from their application stores.

iOS Version Download Link: https://itunes.apple.com/cn/app/google-authenticator/id388497605?mt=8

Android Version Download Link: https://play.google.com/store/apps/details?id=com.google.android.apps.authenticator2

Android Version Download QR Code：

2. Please open the installed Google Authenticator App to create an account, Click ‘+’ to [scan a barcode].

3. On BitForex, Click "Google Authenticator" in "Security Settings". Scan the QR code shown on the "Bind Google Authenticator" page, and the Google Authenticator App will generate a 6-digit verification code. Enter both the email verification code and Google verification code and click "Confirm".

4. Once the confirmation is finished, the binding is successful.

How to setup SMS Authentication on BitForex

If you sign up with your phone, you have SMS Authentication by default.

1. If you sign up with your email, please click [Security Settings] on the dashboard to enable phone verification(SMS auth). 

2. Click the [Bind Now] after the Mobile phone.

3. Select the country code, fill in your phone number, and complete the SMS and Email verification. Click the [Confirm] button to complete the binding.

How to Verify Identification on BitForex (KYC)

1. On the homepage, click the profile tag [Identity Authenciation].

2. Click [Authentication].

3. Fill out your personal information as needed, then click [Next].

Note: Three kinds of personal ID can be chosen: ID card, passport, and driver’s license.

4. Please click [Submit] after adding the necessary materials.

How to setup Anti-Phishing Code on BitForex

What is Anti-Phishing Code

Anti-Phishing Code is a security feature provided by Bitforex that allows users to add an extra layer of security to their accounts. Once you have enabled the Anti-Phishing Code, it will be included in all genuine emails sent to you from Bitforex. This code will help you to discern real emails from phishing emails, helping you to prevent phishing attempts.

How to set up your Anti-Phishing Code

1. Navigate to your account dashboard. You can find Security Settings under the email tab, Click the Security Settings.

2. Click on the button labeled “Go to Settings” behind the Anti-Phishing Code.

3. You will now be prompted with a field where you can enter the Anti-Phishing Code. The code must be 6-20 characters with letters, numbers, and underscores. It is advised to choose a code that is not easily guessed but is easily recognized by you. 

You will now be required to enter your Google authentication code, SMS Authentication code, or Email verification code depending on which two-factor authentication you have enabled.

Once you’ve entered your two-factor authentication code, you will have created your Anti-Phishing code. Now all emails that are legitimate and from Bitforex will contain the code that you have set.

How to reset your Anti-Phishing Code

1.  Click the ’Change’ button behind the Anti-Phishing Code.

2. Enter your new Anti-Phishing Code in the field, remembering that the new code must be 6-20 characters with letters, numbers, and underscores.

You will now be required to enter your Google authentication code, SMS Authentication code, or Email verification code depending on which two-factor authentication you have enabled.

Once you’ve entered your two-factor authentication code, you will have updated your Anti-Phishing code. Now all emails that are legitimate and from Bitforex will contain the new code that you have set.

Frequently Asked Questions (FAQ)

Instructions on how to disable SMS Authentication

If you can receive the SMS verification code with your previous phone number, you can follow the instructions below to unbind: 

1. Login to [Security Setting Page] - [Mobile Phone] and click on [Unbind]
2. After verifying SMS and Email verification, your account will be successfully unbound. 
If you can not receive the SMS verification code, please submit a request with the following information to unbind: 
1. Fill out your "Asset Info" which includes Token/Coin types and amounts.

•  (e.g.: I have 0.1 BTC and 100 USDT in my account, etc.)

2. The latest "Deposit or Withdrawal" record. (Include time, token/coin type, and amount)

•  (e.g.: I deposited 100 ETH on 2019/06/20 at 21:00 GMT+8 or I withdrew 0.5 BTC on 2019/06/21 at 22:00 GMT+8, etc.)

3. The latest trading record includes trading pairs, time, and price. 

• (e.g.: I bought 1 BTC via BTC/USDT trading pair at the price of 8,000 USDT, etc.)

4. A self-portrait photo of a hand-held ID card with written notes: To BitForex, I will take all responsibilities once unbinding the phone number of my account, plus the date and signature. (As shown below)

I understand, Submit the unbinding request now

(We will contact you by email within 1-3 business days)

If you have any further questions, please contact our Online Customer Service

Disable Google Authenticator

If you need to "Unbind Google 2FA, please read the information below and submit a request with relevant information uploaded in the attachment:

1. Amount, date, and token names of deposit and withdrawal;

2. Fill out your "Asset Info" which includes Token/Coin types and amounts.

•  (e.g.: I have 0.1 BTC and 100 USDT in my account, etc.)

3. The latest "Deposit or Withdrawal" record. (Include time, token/coin type, and amount)

•  (e.g.: I deposited 100 ETH on 2019/06/20 at 21:00 GMT+8 or I withdrew 0.5 BTC on 2019/06/21 at 22:00 GMT+8, etc.)

4. The latest trading record includes trading pairs, time, and price. 

• (e.g.: I bought 1 BTC via BTC/USDT trading pair at the price of 8,000 USDT, etc.)

5. A self-portrait photo of a hand-held ID card with written notes: To BitForex, I will take all responsibilities once unbinding the Google 2FA verification of my account, plus date and signature. (As shown below)

I understand, Submit the unbinding request now

(We will contact you by email within 1-3 business days)

Any question?  Online Customer Service

Platform Security

Cold Wallet

Our cold storage maintains more than 98% of user funds in an offline, multisignature wallet, requiring 4 of 7 hardware security modules (HSMs) in possession by globally-distributed management team members to approve all transactions. If an administrator is compromised and forced to log into the platform, a single HSM would not be sufficient to initiate transfer of funds. The challenge to acquire enough of these devices to access cold storage is tantamount to impossible.

Hot Wallet

Our hot wallet maintains only the funds necessary to fulfill withdrawals in the queue, approximately 0.5%. To refill the hot wallet, 4 of 7 HSMs are required to initiate a transfer from the cold wallet to the hot wallet.

Data Structure

BitForex migrated to a new data server and our expanded security team performed a comprehensive audit of our entire stack, including a deep analysis of all source code and dependencies.

DDoS Protection

Intelligent load balancing and failover routing among servers help to increase performance. Real-time malicious traffic detection blocks malicious server requests. Automatic inline mitigation measures decrease latency and increase uptime. Through encrypted connections with HTTPS TLS 1.3, price and performance are improved.