I think your talking about google pay, so you can pay for things using contactless but via your phone? I think that would be okay as there are a few exemptions to the rules such as low value payments, which don’t need 2FA, then for higher value payments you have the phone which I think counts is 1 factor and a pin/fingerprint which would be the 2nd.
No, I’m referring to this:
2 Likes
To clarify this, I know that activation is a one off event, but could the same sort of trigger/tech be used for 2FA when required?
I currently use NFC and a bankcard to unlock my phone…you could do similar with an app
1 Like
I can’t say remembering 3 or 4 6 digits codes has added any overhead to my life in any way. We used to remember far more, longer phone numbers just a few years ago?
You seem to be under the impression I think it should be on by default? I’ve never said that.
I’m just trying to offer an alternative viewpoints like “extra security is uneeded, people never share their phones with others”.
I simply think a very short pause for touchID or a slightly longer one for a PIN is an easy trade off for the amount of time it takes.
There’s multiple levels to this too, by using TouchID I can unlock my phone for someone and then they’ll still need my thumbprint again to get to my emails, browser or banking data but can do things I don’t care about. That’s much safer than no lock on Monzo at all and adds such a minimal overhead.
I take it further because it’s easy for me.
I don’t expect everyone to live the way I do but identity theft and similar crimes are on the rise (source for Alex) and the reward for these crimes is only increasing as we become more invested in technology.
I listed 5 very common use cases for why people would give away their phone above I’m sure we could come up with more? I would love for iOS to support multiple users like Android has for ages but they don’t. My specific use case was an example to show why I go as far as I do.
I’ve started the airmail on your test and I’ll be interested in the results but it was vetted by my company as a suitable 3rd party client.
I’m not sure it’s wise to issue advice saying that things are bullshit legacy-bank-grade secuirity theatre. There is no silver bullet for secuirity apart from not having things worth securing.
The general public is far more likely to side with you (as it’s easier) I think my unusual perspective can add to a more informed decision.
I doubt I’m a high value target for any theft digital or otherwise and I’m very aware that if someone wanted to get into my phone it would be easier for them to start hitting me with a wrench until I told them the code than breaking into my phone..
4 Likes
Thanks, judging by the clicks it looks like other people have found that useful too 
3 Likes
This topic was automatically closed 180 days after the last reply. New replies are no longer allowed.