All sounds great until you lose your phone or FIDO device, or it’s stolen, or your facial login is spoofed but still probably pretty great on the whole when combined with other methods.

  • crdz@lemmy.one
    0·
    1 year ago

    I think it’s a step in the right direction to get users to adopt MFA. I know too many people that still rely on using the same easy to remember password to login to too many accounts, especially important ones and are too “busy” to set up a password manager or even set up MFA through other methods. Having something built in would be good for them. My only concern is that this is something aimed at newer devices and not too much for legacy devices that may not have a Bluetooth enabled desktop. Of course those are probably now viewed as the not the norm for everyone as now everything is done on newer laptops and phones that have everything built in to use these new technologies.

    I also don’t like having all my eggs in one basket, like relying on Google to protect my backup codes and MFA options while assuming they will use E2EE while transferring my data, which apparently they’ve already dropped the ball on their new feature of backing up information into the cloud by default.

    https://www.bleepingcomputer.com/news/google/google-will-add-end-to-end-encryption-to-google-authenticator/

    Edit: added link to article about Google E2EE problem I mentioned above.

    • 🇺🇦 seirim @lemmy.proOPM
      0·
      1 year ago

      Aye thank you for the info on the lacking end to end encryption at Google Authenticator - I didn’t realize that. Big weak point there in the system.