I have a highly secure 2FA system guarding everything. But there are still so many points of weakness and potential ways to compromise the security in place. I am aware of them. I am also aware of all of the ways I can lose access permanently.
We think we have internet identity system figured out. We don't. We are just pretending we do with stupid stuff like password, email recovery codes, 2FA, device auth, social network recovery, facial recognition, fingerprint, etc.
So far we have leveraged brain memory, hardware device, face, finger, and friends for authentication. What else can we do to make this better?
> We think we have internet identity system figured out. We don't
“We” do. There are companies that have very strong security and IAM protections. Others have chosen to invest almost nothing. Your vague wording conflates these two very different things.
Some companies have a great concept of identity and have placed high value on identity verification.
Free email accounts aren’t protected the same way retirement investment accounts are because they carry different risk profiles and different value.
We think we have internet identity system figured out. We don't. We are just pretending we do with stupid stuff like password, email recovery codes, 2FA, device auth, social network recovery, facial recognition, fingerprint, etc.
So far we have leveraged brain memory, hardware device, face, finger, and friends for authentication. What else can we do to make this better?