This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthor

Only authorized users are allowed to rename pages.

Only authorized users are allowed to delete pages.

Page revision history

Version Date Modified Size Author Changes ... Change note

Page References

Incoming links Outgoing links
Universal Second Factor Challenges
Universal Second Factor Challenges

Version management

Difference between version and

At line 1 added 35 lines
!!! Overview
[{$pagename}]
!! Support for [{$pagename}]
There is limited [Website] or other on-line server support for [{$pagename}].
[Universal Second Factor] Security Keys are supported by [Google] [Chrome] since version 40 and [Opera] since version 40. [Universal Second Factor] security keys can be used as an additional method of two-step verification on online services that support the [U2F] [protocol], including
* [Google]
* [Dropbox]
* [GitHub]
* [GitLab]
* [Bitbucket]
* [Nextcloud]
* [Facebook]
However, several of these only support is currently only available for the Chrome browser. [{$pagename}] is not widely supported in general.[3]
!! [Universal Second Factor] and [Credential Enrollment]
The typical [user] will not be able or willing to perform [Credential Enrollment] using [Universal Second Factor]. The process involves several steps and the steps are not something the typical user would perform. Some of these include:
* Enrollment of the [Universal Second Factor] device.
* Fears about loss or unavailability of the [Universal Second Factor] device.
* Backup Codes
!! Backup Codes
When using any [Authentication Factors] there need to be a [Credential Management] method. What we have experienced with [Universal Second Factor] has been:
* Use an different [Authentication Factor] to obtain access to the account. So often you have a [One-Time Password System] as an [Authentication Factor]
* A set of one-time backup authentication codes
The issues with the a set of one-time backup authentication codes is that either the person is unwilling or unable to save the codes in a Secure location or they are unable to obtain access or find them when needed. To store them in a secure place, requires some tool similar to a [Password Management Application], which is the kind of thing we are trying to eliminate.
!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]
----
* [#1] - [Universal_2nd_Factor|Wikipedia:Universal_2nd_Factor|target='_blank'] - based on information obtained 2017-04-02
* [#2] - [Smart Card Technology and the FIDO Protocols|https://www.securetechalliance.org/wp-content/uploads/FIDO-and-Smart-Card-Technology-FINAL-April-2016.pdf|target='_blank'] - based on information obtained 2016-05-21
* [#2] - [USB-Dongle Authentication|http://www.dongleauth.info/|target='_blank'] - based on information obtained 2017-03-21
This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthorTop