Two factor authentication
- Thread starter Krollin
- Start date
Blizzard have the Battlenet dongle for added security, but I think in all cases (if not mistaken...) it is for games that are subscription based?
F2P but with microtransactions, like Star Trek Online or Neverwinter do not have this (or at least I didn't see the ability to grab anything of this nature).
It is an interesting question though. I just wonder if it will be really necessary?
It hasn't been mentioned either way.
But if you know your password it's insecure. I have no idea what my Frontier account password is.
What I mean is ... use a password manager program. I use password safe. Backup the file to my skydrive and I need to remember just two passwords
The password to the Password safe itself and my Sky Drive password (So I can get the back up if my PC takes a dive).
But if you know your password it's insecure. I have no idea what my Frontier account password is.
What I mean is ... use a password manager program. I use password safe. Backup the file to my skydrive and I need to remember just two passwords
The password to the Password safe itself and my Sky Drive password (So I can get the back up if my PC takes a dive).
Greetings,
It was more out of curiosity than anything else. I know it is something SC (sorry to mention it) are planning on doing.
I am not sure if it is truly needed but as passwords can be cracked given enough time (though things like lockouts, notifications etc can be used to mitigate the risk) it would be interesting to see what is decided.
As to why someone would want to, well any application that stores or uses account details (be it debit, credit, paypal, etc) are open to attack.
But as I said, was more out of curiosity than a fear/necessity thing.
Kro
It was more out of curiosity than anything else. I know it is something SC (sorry to mention it) are planning on doing.
I am not sure if it is truly needed but as passwords can be cracked given enough time (though things like lockouts, notifications etc can be used to mitigate the risk) it would be interesting to see what is decided.
As to why someone would want to, well any application that stores or uses account details (be it debit, credit, paypal, etc) are open to attack.
But as I said, was more out of curiosity than a fear/necessity thing.
Kro
its an intresing question, but i would be more intrested in knowing how easy it will be to make an acount recovery, no doubt people will start to get emails in their junk folder form bogus @frontier.co.uk address just like all those blizzard.com/ battlenet.com adresses we probably all get, and at some point some idiot will just blindly click on one of these and hand over their login details.
so far as long as they keep using the authorisation code that is sent to your email address we should be safe. i also think FD should use something similar to steamguard where you are required to authorise the computer to launch the game. i dont know how far this will go beyond the no DRM policy .
so far as long as they keep using the authorisation code that is sent to your email address we should be safe. i also think FD should use something similar to steamguard where you are required to authorise the computer to launch the game. i dont know how far this will go beyond the no DRM policy .
As others have said, nothing has been mentioned about it. Personally I'd be surprised though.
Security is only ever about making the cost of attacking a resource higher than the value gained by doing so. Two-factor authentication makes sense if you have a lot of value behind an account (e.g. a subscription, items worth significant real-world cash etc.), but it looks like Frontier are going the other way - making attacks unprofitable by driving down real-world value.
Squicker
S
Rift has 2FA and is F2P
maybe the Police will do spot checks again like in Frontier. I think they should just continue to ask for words from the Frontier manual too
tricky if you don't have hard copy of it...
The method Google uses, which they supply an API for by the way, is really good. You can either install their Authenticator on your phone/tablet or you can just get Google to send you a text message with the code needed to authenticate. I'm sure the talented folk at FD could implement something like this easily.
No citizens here. Nobody but us commanders
Teach me to post on both forums at the same time, think there is an SC post with Greetings Commanders too haha
Kro
The Battlenet Authenticator is used for Diablo3 and (I think) Starcraft too, both buy-to-play (like ED will be). It works well.
The Google method of texting you a code works nicely also. It can be set to "remember" your device as authorised (no more prompts for codes) for 30 days.
Emailing a code is all very well but if you're been thoroughly pwned via a keylogger then the bad guys will have access to your Gmail etc as well. Sounds far fetched, it isn't, happens all the time. It's also why merely changing your password regularly and making it long and complicated is insufficient; a keylogger doesn't care about length or complexity, and often the results are used in near-real-time.
TLDR; yes please proper 2FA using text messaging or an app.
Created due to WoW and battle.net being cross game.
But anyway, yes it works well, though like any system it isn't infallible, know a few people who have had their accounts hacked despite the authentication.