My friend's idea of two-factor authentication is telling me his password over the phone.

He called to ask if I could log into his email because he forgot his password, then proceeded to read it out loud to me.

3 comments

3 Comments

thomas_dixon533d ago

Actually that's just giving someone your password, which is still one factor. Real two factor is like when you need your password plus a code from an app on your phone. I mean the whole point is having two different kinds of proof. If you just tell both things to the same person, it doesn't really add any security. Maybe it's just me but that kinda misses the point of having it in the first place.

alice_craig3d ago

Sharing both factors defeats the purpose.

the_reese3d ago

Ever notice how people do the right thing but in the wrong way? Like @alice_craig said, sharing both parts misses the whole point. It's like buying a fancy lock but leaving the key right under the mat.