misk@sopuli.xyz to Games@sh.itjust.worksEnglish · 5 days agoCan no-one help? There has to be something better than forever suffering under the tyranny of two-factor authentication for just bloody EVERYTHINGwww.pcgamer.comexternal-linkmessage-square26fedilinkarrow-up121arrow-down128
arrow-up1-7arrow-down1external-linkCan no-one help? There has to be something better than forever suffering under the tyranny of two-factor authentication for just bloody EVERYTHINGwww.pcgamer.commisk@sopuli.xyz to Games@sh.itjust.worksEnglish · 5 days agomessage-square26fedilink
minus-squareSzethFriendOfNimi@lemmy.worldlinkfedilinkEnglisharrow-up21·5 days agoThe hassle and delay is part of how it works. If there was a seamless catch all then it wouldn’t be feasible to make it secure. Having a second physical factor, as much as it can be a hassle, is much better than any single factor. Your password can be breached, brute forced, bypassed if there’s an issue somewhere. Your biometrics can’t be changed so anything that breaks them (such as the breach of finger prints in databases, etc) makes them moot. A single physical token can be stolen and/or potentially cloned by some attack in physical proximity (or breach of an upstream certificate authority) But doing multiple of those at the same time. That’s inordinately much harder to do.
The hassle and delay is part of how it works. If there was a seamless catch all then it wouldn’t be feasible to make it secure.
Having a second physical factor, as much as it can be a hassle, is much better than any single factor.
Your password can be breached, brute forced, bypassed if there’s an issue somewhere.
Your biometrics can’t be changed so anything that breaks them (such as the breach of finger prints in databases, etc) makes them moot.
A single physical token can be stolen and/or potentially cloned by some attack in physical proximity (or breach of an upstream certificate authority)
But doing multiple of those at the same time. That’s inordinately much harder to do.