USPTO Enhances Security with Mandatory Multi-Factor Authentication by November 2025

Currently, USPTO accounts can be accessed using several authentication methods, including email verification and older methods like SMS text messages and phone calls as second factors. However, by November 1, 2025, the USPTO will discontinue accepting email as a verification method and will have already phased out SMS and voice call-based verification by May 1, 2025. The agency is directing users to switch to more secure MFA options such as Okta Verify, authenticator applications (like Google Authenticator or Microsoft Authenticator), hardware security keys, or biometric authenticators. This change aims to minimize risks associated with phishing attacks, social engineering, and other cybercrimes that exploit weaker verification processes.

The MFA upgrade requires USPTO users to download and configure their chosen authentication app or device in advance to avoid any disruption in accessing their accounts. This added layer of security will significantly protect sensitive IP data and filings within USPTO systems, which are critical for inventors, businesses, and legal practitioners managing trademarks, patents, and related IP assets.

By strengthening user verification through modern MFA mechanisms, the USPTO addresses evolving cybersecurity challenges head-on, ensuring that accounts linked to valuable intellectual property rights are shielded from unauthorized access. This modernization also aligns with global cybersecurity best practices, reflecting the USPTO’s commitment to providing secure, reliable services that protect innovation and creativity.

In conclusion, the USPTO’s transition to enhanced multi-factor authentication by the end of 2025 promises increased security and peace of mind for the IP community. Users are encouraged to prepare for these changes by adopting the recommended MFA methods well ahead of deadlines to maintain uninterrupted access to USPTO systems.

This new security protocol represents a vital advancement in protecting IP assets in an increasingly digital and cyber-risk-prone world. Stay secure, stay protected—your IP depends on it!