brie

joined 1 month ago
sorted by: new top controversial old
Feds Warn SMS Authentication Is Unsafe After ‘Worst Hack in Our Nation’s History’ in c/technology@lemmy.world
[–] brie@programming.dev 1 points 1 month ago (2 children)

Proton is already used for identity management: OTP via email. They'll implement OAuth if there's enough demand for it. A company's purpose is to be profitable, ethics side is largely irrelevant.

Many countries already have digital government ID: Australia, Estonia, Russia.

Feds Warn SMS Authentication Is Unsafe After ‘Worst Hack in Our Nation’s History’ in c/technology@lemmy.world
[–] brie@programming.dev 2 points 1 month ago

Watch the video again to see how hard it was for Derrick to get access. He got it via his telecom/academia researcher contact.

Feds Warn SMS Authentication Is Unsafe After ‘Worst Hack in Our Nation’s History’ in c/technology@lemmy.world
[–] brie@programming.dev 4 points 1 month ago (10 children)

S7 will be retired or extended with access control. TOTP apps don't work for edge cases like broken phone. Dedicated token devices get lost. SMS will continue being the main solution for 2FA.

Feds Warn SMS Authentication Is Unsafe After ‘Worst Hack in Our Nation’s History’ in c/technology@lemmy.world
[–] brie@programming.dev 5 points 1 month ago (16 children)

Not true. SMS is encrypted in 3G, LTE, 5G. Block cyphers like Kasumi and A/9 are used. SMS is reasonably secure, because it's hard to infiltrate telecom systems like S7

view more: ‹ prev next ›