Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
General Apps
Privacy and encryption
Looking for a new offshore email provider?
Message
<blockquote data-quote="notabot" data-source="post: 843321" data-attributes="member: 75970"><p>The point of 2FA is that it's a second authentication factor, it's not to be unable to recover your account, it's not meant to be non-reset-able by the service provider.</p><p> 2FA if stored on a separate device, it serves as a backstop to a perpetrator who eg gains access to your password manager on your desktop or gets credentials via keylogger etc.</p><p></p><p> To make resetting credentials hard, something like Google's advanced protection is exactly what's needed and it's the reason Google created it.</p><p> E.g. if someone by hacking, social engineering or both has sufficient info to enter your account and take your identity - except your second factor, Google's advanced protection program will make it hard for them to reset it as the process is long and tenuous and involves notifications. Without the advanced protection program but with 2FA switched on, resetting is more streamlined and someone can bypass the second factor more easily.</p></blockquote><p></p>
[QUOTE="notabot, post: 843321, member: 75970"] The point of 2FA is that it's a second authentication factor, it's not to be unable to recover your account, it's not meant to be non-reset-able by the service provider. 2FA if stored on a separate device, it serves as a backstop to a perpetrator who eg gains access to your password manager on your desktop or gets credentials via keylogger etc. To make resetting credentials hard, something like Google's advanced protection is exactly what's needed and it's the reason Google created it. E.g. if someone by hacking, social engineering or both has sufficient info to enter your account and take your identity - except your second factor, Google's advanced protection program will make it hard for them to reset it as the process is long and tenuous and involves notifications. Without the advanced protection program but with 2FA switched on, resetting is more streamlined and someone can bypass the second factor more easily. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
