I don't trust the government to store secretly any personal information that I give them. They have already sent detailed data about me, which they assured me that they would protect, to a hostile foreign power. Seriously. Not a joke at all. They apologized and offered a whole 2 years of "free" commercial identity protection. Here's an idea, PAY ME! ... For the rest of my life. Oh, and I want TSAPre for free for life as well.Now this poorly thought out, poorly designed and cartoonishly interactive website wants me to use MFA. Really?!? And how secure is this MFA? They claim that they sent me 10 randomly generated one time use backup codes. Spoiler alert, no they didn't. They expect me to use one of these each time I log in. Or, I can use an app on a smart phone as my second factor, which I have to fund and maintain. OR! I can buy one of their pre-approved and not very secure security keys that meets their, once again cartoonishly designed and named, FIDO security standard.Hate this. Passionately.Suggestion: offer to use Steve Gibson's free as in beer, professionally designed, open source, works on any platform, peer reviewed, presented at OWASP in Dublin and as secure as any 256bit elliptic curve crypto can be, system called SQRL. Gratuitous link follows: grc dot com/sqrl/sqrl.htm Why is this better than Oauth or FIDO? It gives the authentication reliant party no secrets to keep. They get a token useful only for authentication to their site using one-way functions that can only verify an authentication, not create one.Secure and Government provided only works for the military. The security comprehension of the civilian arm is laughably naïve.
Claim your business profile now and gain access to all features and respond to customer reviews.
