Page 2 of 2 FirstFirst 1 2
Results 11 to 12 of 12

Hybrid View

  1. 03-29-2019 06:44 AM #1
    Dualgunner
    Player Dualgunner's Avatar
    Join Date
    Aug 2014
    Location
    Gridania
    Posts
    2,942
    Character
    Lilila Lila
    World
    Coeurl
    Main Class
    Machinist Lv 80
    Security and convenience are on opposite sides of a spectrum.
    (6)
    Reply With Quote Reply With Quote
  2. 03-29-2019 07:02 AM #2
    Ladon
    Player
    Ladon's Avatar
    Join Date
    Aug 2012
    Posts
    570
    Character
    Resa Nome
    World
    Hyperion
    Main Class
    Paladin Lv 90
    Yes, the SE token is poorly implemented. It’s not insecure but it does leave a lot to be desired for usability.

    They tie the certificate to the device ID which is just silly these days as not only does this prevent multi-device registration options (which all modern MFA solutions: Duo, Okta, Google Authenticator) but I’m sure many of you have experienced the need to re-register the soft token if you restore from a backup or get a new device.

    There are better ways to do this now that allows you to register on multiple devices while making sure it’s a device you own.

    I would not be in favor of not prompting for MFA every log in like Blizzard allows. There are plenty of ways this can be exploited though you would have to be part of a targeted attack. However they could implement a MFA push so that you just have to accept to decline a log in rather than having to fire up the token app and put in a code every time.
    (2)
    Reply With Quote Reply With Quote
Page 2 of 2 FirstFirst 1 2
« Previous Thread | Next Thread »