Apple Proposes Standard to Automate One-Time Passcodes Via SMS
Apple's WebKit web browser engine team has proposed a new standard for SMS-based two-factor authentication (2FA) that would allow the process to be automated, requiring no extra user interaction when logging into a web site on a mobile device. Currently, SMS-based 2FA requires that users receive and view a text message containing a one-time passcode (OTP) that is typically a six-digit number, then enter that number on a special login page. In some cases, the process can be automated, but it is not standardized. Mobile OSes have attempted to semi-automate the process by offering one-tap copy-and-paste options for OTPs. Apple's proposed standard would include a special login URL in the text message body. This would allow mobile browsers and/or OSes to complete the login automatically, as well as provide protection against phishing attempts. Google's web browser engine team is also on board with the proposal.
May 24, 2018
Facebook has made it easier for people to secure their accounts. The company improved how it handles two-factor authentication.
Mar 23, 2017
Instagram today said it has rolled out two-factor authentication for all users around the world. The extra layer of security is optional, but can be used to safeguard accounts.
Mar 26, 2018
Facebook has been called out in recent days for storing, in some cases, years' worth of call logs and text messages from Android handsets. Users discovered the logs in the wake of the Cambridge Analytica scandal.
Apr 18, 2018
Google has reduced the complexity of using two-factor authentication for Gmail in an effort to encourage more people to take advantage of the tool. Moving forward, iPhone and iPad users can receive security prompts within Gmail.
Apr 10, 2019
Google has expanded the two-step verification options when logging into Google services on a tablet or computer to allow the use of any Android 7+ phone as a hardware security key. The option is available today, for both personal and business accounts.
No messages yet