Why multi-factor authentication is great

[anitra]

Two things that are making me think of multi-factor authentication lately:

1. The LinkedIn password fiasco. Yes people, passwords need to be stored in a database, and they can be stolen. And then you have to change your password everywhere that you MIGHT be using the same one. Ugh.
2. Dreamhost (my webhost of choice) just added two-factor

Comments

[elenuial]

This is awesome and useful! :)

[gunthersdncemix]

Really nice explanation! I'm still skeptical of biometric info though - that can't be changed if stolen, like a credit card number can for example. What happens when the database storing your biometric info gets hacked? Also - issues like people with disabilities etc. are not resolved. What if a burn victim doesn't have fingerprints? etc.

[anitra]

From what I understand, the "I don't have that particular biometric info" problem and the faking biometrics problem are both much bigger concerns than your info being stolen. Yes, your biometrics are harder to change - but they're also a lot less useful to a potential thief, especially if it is not the only vector to access your info.