Replying to Avatar HoloKat

Apps that offer text or Face ID as security are asking for trouble. As soon as someone has your phone, they can read your texts and change the Face ID to theirs…

A better way is to offer a separate PIN (but my guess is most will just use their phone pin 🤦‍♂️) or a physical key 2FA.

I cannot take any app seriously that doesn’t support hardware authenticators
Avatar
sister_sam 11mo ago

GrapheneOS phone locks and I use longer pass phrase. You only get so many tries to unlock. So they would have to grab unlocked phone out of my hand. Even on a desktop you don't generally have even a separate password for every app but less hardware auth. But face ID or even fingerprint I think are bad idea. Among other things in many places you can be forced to unlock using them. Even if you are unconscious.

Reply to this note

Please Login to reply.

Discussion

No replies yet.