Skip to main content

More ways not to do two-factor authentication

(0 comments)

What is ok to use as a risk factor and what is not?  This will be a question in the near future.  Increasingly, companies are pushing odd (and some down-right creepy) authentication methods.  

Some of these go without saying. Like Do not use brainprints.  Do not require chips that are injected in the body.   Do not use something like voice print, without asking first. 

But there's a finer line too.  What if you collect data like keystrokes that are used to identify the user.  And what if you can also tell if someone is sick with say, Parkinson's by analyzing their keystrokes?  Are you in possession of Personal Health Information (PHI)?   If you have to disclose that your site uses cookies, there's a good chance you will have to disclose this too.  

 

Currently unrated

Comments

There are currently no comments

New Comment

required

required (not published)

optional

Recent Posts

Archive

2018
2017
2016
2015
2014
2013
2012
2011
2010
2009
2008

Categories

Tags

Authors

Feeds

RSS / Atom