|
Title: Why Yahoo's new on-demand password system is no two-factor authentication killer Post by: HCK on March 17, 2015, 09:00:10 pm Why Yahoo's new on-demand password system is no two-factor authentication killer
<article> <section class="page"> <p>In an effort to simplify authentication for its services, Yahoo has introduced a new mechanism (http://www.pcworld.com/article/2896782/yahoo-wants-to-kill-the-password-one-text-message-at-a-time.html) that allows users to log in with temporary passwords that are sent to their mobile phones.</p><p>If this sounds like a two-factor authentication system where users need to provide one-time codes sent to their mobile phones in addition to their static passwords, it’s not. Yahoo already had that option.</p><p>Instead, the new log-in mechanism (http://yahoo.tumblr.com/post/113708272894/a-new-simple-way-to-log-in), which is based on what Yahoo calls on-demand passwords, still relies on a single factor, the user’s phone number.</p><p class="jumpTag"><a href="/article/2897332/yahoos-new-ondemand-password-system-is-no-replacement-for-twofactor-authentication.html#jump">To read this article in full or to leave a comment, please click here[/url]</p></section></article> Source: Why Yahoo's new on-demand password system is no two-factor authentication killer (http://www.macworld.com/article/2897332/yahoos-new-ondemand-password-system-is-no-replacement-for-twofactor-authentication.html#tk.rss_all) |