Google Apps Gets Two-Factor Security

← Back to Stories (view on slashdot.org)

Google Apps Gets Two-Factor Security

Posted by CmdrTaco on Monday September 20, 2010 @01:00AM from the third-factor-requires-blood-sample dept.

judgecorp writes "Passwords alone are not enough to secure access. Many organisations require two-factor authentication with a token. Google just added free two-factor verification to Google Apps, sending a one-off token to the user's mobile phone. It's good to have this for free, and it backs up Google's assertion that cloud apps are more secure — but it doesn't answer how it helps if an intruder is getting into Apps through a lost or stolen phone."

118 comments

Min score:

Reason:

Sort:

Cloud apps more secure? by Anonymous Coward · 2010-09-20 01:01 · Score: 1, Insightful

Or you know, a Google (or any other cloud service) employee access all your data because they own it then... No, cloud services are not more secure. Especially free ones who's business model is to make money off your private information.
1. Re:Cloud apps more secure? by Anonymous Coward · 2010-09-20 01:04 · Score: 2, Insightful
  
  I'm not sure that necessarily makes your data less secure. An administrator always has access to your data, whether that admin works for your company or another company doesn't necessarily change the likelihood that the admin will abuse their power.
2. Re:Cloud apps more secure? by Pojut · 2010-09-20 01:06 · Score: 2, Insightful
  
  Agreed. I fail to see how sensitive information being sent over the Internet could be more secure than keeping sensitive information stored on a computer that doesn't even have a network card installed.
  
  --
  Living With a Nerd
3. Re:Cloud apps more secure? by ibsteve2u · 2010-09-20 01:13 · Score: 3, Insightful
  
  The most interesting inference to me is that some third-party vendor who is serving up cloud apps has employees who are inherently more trustworthy than the ones you handpicked are.
  
  --
  Orwell: "In a Time of Universal Deceit, telling the Truth is a Revolutionary Act"
4. Re:Cloud apps more secure? by Anonymous Coward · 2010-09-20 01:17 · Score: 2, Insightful
  
  It appears Google's argument is "it's safer/easier/cheaper to use Google Docs than emailing your file as an attachment, or letting employees put it on laptops and USB keys which they then loose."
  If you have information which can only be transmitted between a computer monitor and the user's eyeballs, I don't think Google has any thing to peddle to your corporation, unless they start selling Faraday Cages to guard against Van Eck phreaking.
5. Re:Cloud apps more secure? by Anonymous Coward · 2010-09-20 01:27 · Score: 0
  
  It does when your chances of discovering such unauthorized access fall drastically if that admin isn't employed by the same company you work for.
6. Re:Cloud apps more secure? by morgan_greywolf · 2010-09-20 01:38 · Score: 1
  
  It does when your chances of discovering such unauthorized access fall drastically if that admin isn't employed by the same company you work for.
  Not really. In the case of Google Apps, the problem of admin abuse becomes Google's. Google, in turn, has a vested interest in ensuring that their paying customers' data stays private. And if you're not one of Google's paying customers, well, I suppose you get what you pay for, eh?
  
  --
  My blog
7. Re:Cloud apps more secure? by numbsafari · 2010-09-20 01:49 · Score: 2, Interesting
  
  I know where the employees who work for me live. I know what car they drive. I know where they like to go to lunch. I have their social security number and a copy of their driver's license.
  I also know a guy named Tony. Tony likes to break things. And ever since some pencil-neck computer nerd posted pictures of Tony's girlfriend on-line, Tony really likes to break computer nerds.
  With Google, these things are much less transparent.
8. Re:Cloud apps more secure? by IndustrialComplex · 2010-09-20 01:55 · Score: 3, Insightful
  
  Agreed. I fail to see how sensitive information being sent over the Internet could be more secure than keeping sensitive information stored on a computer that doesn't even have a network card installed.
  Security and Availability go hand in hand. Security isn't just, NO ONE EVER GETS TO LOOK AT MY DATA. Security is also making sure that your data remains undamaged (integrity) and available to the people that you want to see it.
  
  --
  Out of modpoints but really liked a post? 1BDkF6TtmmeZ3yqXbz9yhdYVqRYnwFoXDj
9. Re:Cloud apps more secure? by IndustrialComplex · 2010-09-20 01:58 · Score: 2, Insightful
  
  Google, in turn, has a vested interest in ensuring that their paying customers' data stays private.
  Google has a vested interest in ensuring that their paying customers' data breaches stay private. That's number one. If they can't ensure number one, then your statement takes priority.
  The issue with Google's model is that you rely on Google's policy/process and you cannot directly negotiate/control that. (Not saying that their policy/process isn't acceptable for some people, but that you don't get to directly influence it)
  
  --
  Out of modpoints but really liked a post? 1BDkF6TtmmeZ3yqXbz9yhdYVqRYnwFoXDj
10. Re:Cloud apps more secure? by ronocdh · 2010-09-20 02:00 · Score: 1
  
  I fail to see how sensitive information being sent over the Internet could be more secure than keeping sensitive information stored on a computer that doesn't even have a network card installed.
  While I acknowledge your penchant for information security, I fail to see how information on a non-networked computer is useful. If we're tearing out our network cards in 2010 (note that the very notion of non-embedded networking hardware is rather old-hat), let's just go back to poking at clay tablets with sticks! All this new-fangled technology is for the birds, right?
  TFA is about ensuring that computer security improves to meet new challenges. That is both harder and more noble than throwing the baby out with the bathwater, which you seem to propose as a reasonable solution.
11. Re:Cloud apps more secure? by 140Mandak262Jamuna · 2010-09-20 02:05 · Score: 1
  
  All it took was a blank CD that pretended to be Lady Gaga music to allow a traitor to leak 80000 classified docs to WikiLeaks.
  Inside jobs, carelessness, apathy, weak passwords etc account for most of the data loss. Packet snooping on https connections is not the main source of security breaches.
  
  --
  sed -e 's/Chuck Norris/Rajnikant/g' joke > fact
12. Re:Cloud apps more secure? by ibsteve2u · 2010-09-20 02:09 · Score: 1
  
  With Google, these things are much less transparent.
  Oh...so you don't think the results harvested from "Google would like to know your location." are going into a massive database linking every IP address - and, by extension, IPs in the same subnet - to a physical location?
  
  I.e., Google's "Tony" knows where you work AND live...and he's got your data.
  
  --
  Orwell: "In a Time of Universal Deceit, telling the Truth is a Revolutionary Act"
13. Re:Cloud apps more secure? by mlts · 2010-09-20 02:16 · Score: 1
  
  There are times when having something non-networked is useful. Offline key signing for example where one takes a USB flash drive full of items to be signed to an offline HSM in a physically secure location where only a few people have access to it.
  What I see that might happen as a compromise between completely air-gapping versus complete connectivity are private backbones. Think NIPRNet, except for businesses. I can see banks coming out with a backbone, "BIPRnet" which connects businesses either on their own dedicated lines, or encrypted gateways if the traffic does have to go over the Internet.
  Because this is a closed backbone, it doesn't have to even use IP. It can use its own protocol or virtual circuits with a master machine deciding which boxes on the backbone can communicate where.
14. Re:Cloud apps more secure? by Anonymous Coward · 2010-09-20 02:25 · Score: 0
  
  no, he may know where you work and live, but he DOES NOT have your data. That's the whole point!
15. Re:Cloud apps more secure? by xtracto · 2010-09-20 02:30 · Score: 1
  
  Agreed. I fail to see how sensitive information being sent over the Internet could be more secure than keeping sensitive information stored on a computer that doesn't even have a network card installed.
  
  Security and Availability go hand in hand. Security isn't just, NO ONE EVER GETS TO LOOK AT MY DATA. Security is also making sure that your data remains undamaged (integrity) and available to the people that you want to see it.
  Uhhh, me thinks you are confusing privacy with security.
  Data privacy is the one about
  
  NO ONE EVER GETS TO LOOK AT MY DATA.
  While data security is about
  
  making sure that your data remains undamaged (integrity) and available to the people that you want to see it
  
  --
  Ubuntu is an African word meaning 'I can't configure Debian'
16. Re:Cloud apps more secure? by mlts · 2010-09-20 02:30 · Score: 2, Interesting
  
  If you look at a cloud provider like Google, there are two paying customers: Enterprises and businesses, and advertisers. So, on one hand, the cloud provider needs to protect data for people paying for their apps. On the other hand, they need to cough up data so the advertisers keep paying.
  This bifurcation is why I prefer using E-mail providers whose sole revenue stream is customers. This way, advertisers have no vested interested in what data sits on the servers. Hosted Exchange providers come to mind here, same with me.com.
17. Re:Cloud apps more secure? by mlts · 2010-09-20 02:36 · Score: 1
  
  Blergh, pardon the grammar goofs. What I intended to state is that it is hard for a company to serve two different types of interests without letting one win out. Does a cloud provider prefer privacy of paid E-mail customers over ad data handed to advertisers?
  Perhaps the best of both worlds would be dividing the two interests into separate divisions. Paid E-mail goes to one set of servers where the sole focus is the customer. "Free" [1] E-mail goes to another set where advertisers can get their statistics they pay for. If there is a privacy lapse in the "free" E-mail, it doesn't affect the paid customers.
  [1]: TANSTAAFL. Gmail is probably the closest thing to a decent "free" E-mail provider out there, but for privacy's sake, I much rather use a provider that I pay and who does not get ad dollars.
18. Re:Cloud apps more secure? by MobileTatsu-NJG · 2010-09-20 02:38 · Score: 1
  
  Or you know, a Google (or any other cloud service) employee access all your data because they own it then... No, cloud services are not more secure. Especially free ones who's business model is to make money off your private information.
  Oh shush. Google fans value freedom.
  
  --
  
  "I like to lick butts!" by MobileTatsu-NJG (#32700246) (Score:5, Informative)
19. Re:Cloud apps more secure? by morgan_greywolf · 2010-09-20 02:39 · Score: 1
  
  Google has a vested interest in ensuring that their paying customers' data breaches stay private. That's number one. If they can't ensure number one, then your statement takes priority.
  You could say the exact same thing for a sysadmin that you pay yourself, however, which was the whole point of the parent of the post I replied to.
  
  --
  My blog
20. Re:Cloud apps more secure? by hedwards · 2010-09-20 02:55 · Score: 1
  
  Indeed, apart from DoD and intelligence work with sensitive documents, I don't think it's terribly useful to have a non-networked computer in this day and age. Perhaps you could make it really secure and super glue the cup holder shut, and perhaps do the same to the USB ports and network jack, but at some point you're going to need to actually use the computer at which point security becomes rather moot. After all there's little point in securing a computer with no data on it.
21. Re:Cloud apps more secure? by Anonymous Coward · 2010-09-20 03:07 · Score: 0
  
  You're COMPLETELY missing the whole point.
  
  1) Unless he has access to that data it's not transparent from his POV.
  
  2) Google knowing stuff about you is not the same as you knowing stuff about your own employees.
22. Re:Cloud apps more secure? by IndustrialComplex · 2010-09-20 03:13 · Score: 1
  
  Uhhh, me thinks you are confusing privacy with security.
  Data privacy is the one about
  While data security is about
  For reference: http://en.wikipedia.org/wiki/Information_security
  Integrity
  Availability
  Confidentiality
  It isn't that they are all one and the same and in equal measure, it is that they all are aspects of designing a secure system. For a given system, confidentiality (a more comprehensive term than privacy) is an aspect that you evaluate and your requirements are derived from your need.
  Privacy, as you state it, IS a factor in designing a secure system. How do you make the data available to the right people while restricting access to the wrong people. How do you evaluate if the data you require to be confidential has remained confidential? All of these questions are so bound into the concept of information security that to call it a distinct and separate element is false.
  Or in simple terms: You need to know what you want from a confidentiality aspect if you hope to design a secure system.
  
  --
  Out of modpoints but really liked a post? 1BDkF6TtmmeZ3yqXbz9yhdYVqRYnwFoXDj
23. Re:Cloud apps more secure? by IndustrialComplex · 2010-09-20 03:27 · Score: 2
  
  You could say the exact same thing for a sysadmin that you pay yourself, however, which was the whole point of the parent of the post I replied to.
  Which is why I continued my comment beyond that point and discussed direct and indirect control.
  The sysadmin reports to me. Part of my job is making sure he is doing the job I'm paying him to do. Keeping the comparison simple, if I'm the company president, my level of control over behavior is 100% You can only say the sysadmin has the same interest if I fail to effectively manage the person I hired.
  Google's sysadmins report to them. I am but one of thousands of equivalent contracts to them. Therefore the level of control I have over their internal process and behavior is immediately reduced by a factor of several thousand. Everything I would want to do or change is subject to lag, both in time, and in effect.
  
  --
  Out of modpoints but really liked a post? 1BDkF6TtmmeZ3yqXbz9yhdYVqRYnwFoXDj
24. Re:Cloud apps more secure? by morgan_greywolf · 2010-09-20 03:34 · Score: 2, Insightful
  
  The only kind of "private" e-mail that exists is the kind that you encrypt. Once a plaintext e-mail leaves your client, there is no guarantee that some third party won't read it.
  Security through obscurity is the same as no security at all.
  
  --
  My blog
25. Re:Cloud apps more secure? by SuperQ · 2010-09-20 03:45 · Score: 1
  
  This is completely misleading and wrong. The ads system matches content to an ad. At no point is there even a reason for the data to leave Google. If you could sign up for an advertiser account and get data out of Google people would be marching with torches and pitchforks.
  There is no conflict between the user serving side and the ads serving side. Especially when you consider that Apps enterprise admins/users can literally turn ads off.
26. Re:Cloud apps more secure? by morgan_greywolf · 2010-09-20 03:45 · Score: 1
  
  And if Google's privacy policies are inadequate for your needs, then you shouldn't use them.
  However, for those thousands of contracts, Google's privacy policies are perfectly acceptable.
  Everything is a tradeoff; with the cloud you get less direct control, but you save costs by not having to administer the applications yourself. With the locally-stored data, you get lots of direct control, but your costs are exponentially higher.
  One more thing: if you are storing data locally for that greater control, more than 60% of your data is going to wind up being saved on users' local desktops, which in most organizations will be neither secure nor backed up and in all cases will be much less secure with greater data integrity problems than with centralized control on a server. That's something else you have to take into consideration when evaluating such tradeoffs.
  
  --
  My blog
27. Re:Cloud apps more secure? by mlts · 2010-09-20 04:39 · Score: 1
  
  I didn't state that advertisers had access to E-mail contents, but analytical data relating to E-mail traffic. However, the cloud provider is the place that decides how much or how little anonymizing takes place. For example, does an advertiser get to know that account "X" gets a lot of mail with the "buying a Chevrolet" that are not spam often, or does that person do a lot of dialog about buying Fords?
  In any case, if advertisers are paying the bills as opposed to the end user, E-mail account holders are not customers. They will be viewed as visitors at best, leeches at worst.
28. Re:Cloud apps more secure? by aix+tom · 2010-09-20 08:39 · Score: 1
  
  Actually, the systems I'm administrator on have at least:
  - Some Oracle Virtual Private Databases
  - Front-End encrypted personnel document management Systems
  - Encrypted MS Office files.
  on them.
  I could probably break into the third category with some trickery, but the first two are completely hidden from me content-wise. Only people with the right password and the right ID card can access them.
29. Re:Cloud apps more secure? by ResidentSourcerer · 2010-09-21 01:50 · Score: 1
  
  Two people can keep a secret . . . If one of them is dead.
  
  --
  Third Career: Tree Farmer Second Career: Computer Geek First Career: Teacher, Outdoor Instructor, Photographer.
30. Re:Cloud apps more secure? by jesset77 · 2010-09-26 09:36 · Score: 1
  
  Two people can keep a secret . . . If one of them is dead.
  Yeah, until the ME finally pries the truth from him. :P
  
  --
  People willing to trade their freedom of expression for temporary entertainment deserve neither and will lose both.
There's a price. by Anonymous Coward · 2010-09-20 01:02 · Score: 5, Insightful

For the low low price of your mobile phone number we will give you some extra security!
1. Re:There's a price. by jopsen · 2010-09-20 05:15 · Score: 1
  
  Okay... I admit I could find anything in their privacy policy... I seriously doubt that is their motive...
  In fact I wouldn't be surprised if they promised not to use your phone number for anything else... Google does appear to be quite serious about cloud based apps...
2. Re:There's a price. by Anonymous Coward · 2010-09-20 06:35 · Score: 0
  
  Or just install the app and they don't get your phone number...
...because it's 2 factor... by OneMadMuppet · 2010-09-20 01:04 · Score: 3, Informative

...which means if someone gets one factor (your phone), they still don't have the other (your password).
1. Re:...because it's 2 factor... by chill · 2010-09-20 01:09 · Score: 4, Insightful
  
  Allow me to introduce you to Google's "I lost my password, send me a code to my mobile phone to reset it" feature...
  
  --
  Learning HOW to think is more important than learning WHAT to think.
2. Re:...because it's 2 factor... by MBGMorden · 2010-09-20 01:13 · Score: 2, Insightful
  
  I believe that's via email, which can be tied to your phone, but not necessarily.
  The reality though is that the only completely secure system is one that NO ONE can access. If you want it to be useful, the system HAS to have some way to unlock itself. Saying that a person can access the system if they have all of your credentials isn't really a flaw - it's the way the system has to work.
  Put bluntly, there has to be SOME point when the user steps up and starts becoming responsible for keeping track of their credentials.
  
  --
  "People who think they know everything are very annoying to those of us who do."-Mark Twain
3. Re:...because it's 2 factor... by Anne_Nonymous · 2010-09-20 01:23 · Score: 1
  
  Allow me to introduce you to Google's "I lost my password and my mobile, just log me in anyway" feature...
4. Re:...because it's 2 factor... by chill · 2010-09-20 01:27 · Score: 1
  
  As opposed to the "some of the Google engineers have already read your mail. There isn't anything you need to see right now, anyway." Service? :-)
  
  --
  Learning HOW to think is more important than learning WHAT to think.
5. Re:...because it's 2 factor... by rhsanborn · 2010-09-20 01:43 · Score: 1
  
  That would be an excellent service. Google can pre-filter email accounts and only pull out the accounts likely to be owned by a person with significant disposable income or high credit rating. It would save the phishers from having to try hundreds of dead-ends!
6. Re:...because it's 2 factor... by vlm · 2010-09-20 01:50 · Score: 1
  
  Saying that a person can access the system if they have all of your credentials isn't really a flaw - it's the way the system has to work.
  Not "has to work" at all. Not even remotely. First example off the top of my head in the first few seconds:
  Some other gmail user whom you have sent email in the past (lets say, one year) has to log into gmail and acknowledge that yes indeed you are requesting a new password for yourself. That second factor would have to be via a voice telephone call or in person request or whatever.
  In that two (or more) factor authentication, an attacker would not only have to take over all of your credentials, but also take over the credentials (or at least login) of one of your friends.
  I think that the main hidden purpose of the "google me" social network thingy is to do stuff like this, friends that you've selected are authorized to unlock your account when at least X out of Y of them agree its a wise choice and there's less than Z vetos of the decision.
  
  --
  "Science flies us to the moon. Religion flies us into buildings." - Victor Stenger
7. Re:...because it's 2 factor... by hedwards · 2010-09-20 03:01 · Score: 1
  
  That's not even remotely realistic. Besides being overly cumbersome, it just changes the strategy needed to break into the account. And ultimately it doesn't solve the problem of having all the credentials anyways, because that doesn't evencome into play until you've lost them.
  
  Unless you're seriously suggesting that they randomly contact somebody that you may or may not know for approval. Which is far, far more likely to end up in shenanigans than just trusting Google.
8. Re:...because it's 2 factor... by MozeeToby · 2010-09-20 03:02 · Score: 1
  
  Then put a pin or password on your phone and/or install an application that allows you to perform a remote wipe if you lose it.
9. Re:...because it's 2 factor... by Anonymous Coward · 2010-09-20 03:05 · Score: 0
  
  That's nice, but I don't believe "send me a code to my mobile phone to reset it" is a mandatory setting. If you choose to enable it, then you know that's a risk you take if you lose your phone. Just like if you choose to engrave your Google password on the back of your mobile phone. Same difference.
10. Re:...because it's 2 factor... by Confusador · 2010-09-20 03:07 · Score: 1
  
  Unless you have your phone store your password, but who's users would be stupid enough to do that? As you say, though, even in that worst case scenario they've reduced the problem down to attackers who have both the phone and the password. I fail to see any way that increasing security is a bad thing, even if there's still a hole (there's always a hole).
11. Re:...because it's 2 factor... by wvmarle · 2010-09-20 04:01 · Score: 1
  
  Indeed making it no more or less secure than other two-factor systems that require some USB token or so.
  As a matter of fact today when I came back from lunch I found such a USB token, in this case to access an e-banking web site. Someone from the neighbouring office dropped it while opening their gate or so, it was in the middle of the corridor. Not smart. I just rang their door bell and returned it to them.
  I happen to know which bank it belongs to (I have a similar token), it wouldn't have given me access to their account even if I wanted to. I still missed the un/pw combination that goes with it.
  Something you have plus something you know... pretty secure with fairly little hassle.
12. Re:...because it's 2 factor... by Anonymous Coward · 2010-09-21 01:12 · Score: 0
  
  No, no, no, no, no.
  This feature is not present in Google Apps. The password can only be reset by the domain administrator. I really can't believe this comment was modded up.
It's Obvious by sjpadbury · 2010-09-20 01:05 · Score: 3, Funny

Learn to keep track of your damn phone...

--
We're all full up on Crazy here...
1. Re:It's Obvious by eldavojohn · 2010-09-20 01:17 · Score: 2, Insightful
  
  Learn to keep track of your damn phone...
  And what do I do when I don't have phone service?
  
  I recently went on vacation to Grand Cayman and didn't have any phone service. What happens then? I had to correctly identify friends from random Facebook pictures in order to log into Facebook the first time (at which point the place I was staying was apparently white listed for me to log into for the rest of the trip).
  
  Sure, it's probably a small annoyance to pay for better security unless you travel often or have really randomly spotty cell phone service. A trip out to my parent's farm would probably be more than an annoyance as I await the text msg okaying me to log into GMail through my parent's 56k modem. I guess everything comes with a price but I'd probably just turn this off and leave it off instead of regretting it on vacation if I forget to disable it before traveling.
  
  Also, a few of my company's clients have server rooms in the depths of basements with little to no cell phone reception. Would hate to work there if you try to log into GMail and get asked for this. You'd have to go for a walk to get your authentication code.
  
  --
  My work here is dung.
2. Re:It's Obvious by wealthychef · 2010-09-20 01:31 · Score: 1
  
  That's a great example of why some argue that the "secret questions" approach to "enhanced security" is actually less secure than just a password. How many of your friends do other people know as well as you? That's very guessable compared to your password.
  
  --
  Currently hooked on AMP
3. Re:It's Obvious by camperdave · 2010-09-20 01:47 · Score: 1
  
  I had to correctly identify friends from random Facebook pictures in order to log into Facebook the first time
  
  Apparently that is a very secure way to validate the user. The face recognition part, not necessarily the Facebook part.
  
  --
  When our name is on the back of your car, we're behind you all the way!
4. Re:It's Obvious by vlm · 2010-09-20 02:01 · Score: 1
  
  Apparently that is a very secure way to validate the user. The face recognition part, not necessarily the Facebook part.
  Unless you are friends / schoolmates / coworkers with people in show business.
  
  --
  "Science flies us to the moon. Religion flies us into buildings." - Victor Stenger
5. Re:It's Obvious by hedwards · 2010-09-20 03:04 · Score: 1
  
  Worse, or better depending upon your perspective, is when the questions list is limited and one of them is completely useless. There's a fair number of people born in the late 40s, who have no middle name, as in they were named in part after President Truman, leaving you in the position of making up a name you won't remember or having a single letter answer.
6. Re:It's Obvious by Anonymous Coward · 2010-09-20 03:24 · Score: 0
  
  If you have a smart phone and install the 2nd factor app instead of using the SMS option, you won't need phone service, so you're all good!
7. Re:It's Obvious by wvmarle · 2010-09-20 04:03 · Score: 1
  
  You'd have to go for a walk to get your authentication code.
  Only to get timed out by the time you return of course.
Inconvenience by Sonny+Yatsen · 2010-09-20 01:06 · Score: 1

Does this mean that a misplaced phone will present a serious impediment to being able to access your work on Google Apps?

--
My postings are informational and does not constitute legal advice. Act on it at your risk.
1. Re:Inconvenience by xouumalperxe · 2010-09-20 02:48 · Score: 1
  
  Yes, exactly. Same as misplacing a SecurID token (or anything similar) locks you out of using whatever service the token is tied to. The horror.
2. Re:Inconvenience by gmor · 2010-09-20 08:01 · Score: 1
  
  They offer a few one-time numbers to use in case you lose your phone. If there is a chance that you'll lose your phone, you're supposed to write the extra codes down and put them in a safe place.
If *anything* gets stolen... by NYMeatball · 2010-09-20 01:10 · Score: 4, Insightful

It sort of compromises everything - but that doesn't mean it's a bad form of authentication, does it?
Once your machine, token, credentials, anything have been physically compromised, it's generally accepted that you're hosed (at least for that one factor).
Seems like a step in the right direction.
1. Re:If *anything* gets stolen... by Jurily · 2010-09-20 01:31 · Score: 2, Insightful
  
  Agreed. While it's by no means perfect, it is more secure.
  Most accounts today are not compromised because the attackers specifically target the victim, but because they had the weakest password.
  Also, the act of stealing a physical device makes it a far greater risk and hassle for the attackers.
2. Re:If *anything* gets stolen... by mjwx · 2010-09-20 13:35 · Score: 1
  
  It sort of compromises everything
  With 2 factor authentication that is only true if you've got both authentication mechanisms saved on the device.
  
  This is why, with 2 factor authentication you need to have the password and token separate (of course people tend to put the laptop and token into the same bag all the time but I digress, that's a physical security problem). With my bank (I think this is the same for all Australian banks now) when I transfer money to an account that isn't mine via internet banking I have to type in a code sent to me via SMS. Now if Pavel the cracker gets my bank ID and password via a keylogger he wont be able to do anything except shuffle my savings around between my internal accounts. This is how 2 factor auth is meant to work.
  
  --
  Calling someone a "hater" only means you can not rationally rebut their argument.
Whoa... REAL Two-Factor Security on the Web?! by Anonymous Coward · 2010-09-20 01:11 · Score: 1, Informative

You mean it's not just Wish-it-was-Two-Factor? Google never ceases to amaze me. Now, how long must we wait before online banks finally get their security model right?
1. Re:Whoa... REAL Two-Factor Security on the Web?! by icebraining · 2010-09-20 02:48 · Score: 1
  
  Here in Portugal my bank already send an SMS with a verification code for any operation over X euros, being X configurable.
  
  --
  Dilbert RSS feed
Mobile security by yakumo.unr · 2010-09-20 01:13 · Score: 4, Interesting

I'm worried because in all the years I've had a Google mail account I haven't had any issues, yet a month after getting an Android 2.1 phone, despite being really careful about only installing high rated applications with tens of thousands of users and mostly keeping an eye on what they're allowed to access, my gmail account was hacked and used to send out a spam email via a mobile device in canada.
I've never had an email account hacked before, so I'm pretty convinced that some phone app has leaked my account details (as it's the gmail account tethered to my phone).
Admittedly Google immediately suspended my account due to suspicious activity (access from Mobile Canada (71.17.214.49), I live in the UK), and a token to my mobile phone was how I unlocked it and changed my password, but I'm still rather wary now despite how much I love my Galaxy S mobile.
I have bought apps I don't want to lose wiping the phone, and I have no real way to tell what it may have been that leaked my data.
I have droidsecurity antivirus installed now, but wish google could offer some stronger post-install controls on what an app's allowed to do.
1. Re:Mobile security by Darkness404 · 2010-09-20 01:17 · Score: 2, Interesting
  
  I agree, really, Google should let -us- decide what an app can do. Want to access the internet, nope, check a box marked deny and that app no longer has access to that. Want to know my location, nope, check a box marked deny and that app no longer can find your location.
  
  About the only thing is, that might piss off a few developers because ad-blocking becomes rather easy, but I'm sure they will find a way to have it use the internet in a non-annoying way...
  
  --
  Taxation is legalized theft, no more, no less.
2. Re:Mobile security by Mr_Silver · 2010-09-20 01:27 · Score: 2, Insightful
  
  I've never had an email account hacked before, so I'm pretty convinced that some phone app has leaked my account details (as it's the gmail account tethered to my phone).
  The problem is that when you install an application, Android gives you a big long list of things that the app wants to do. Whilst it sounds like a great idea, it gives no context as to why it needs those features and you only have two choices - accept that the application can do everything or don't install it. It's far too easy to sneak something into that list without people realising.
  In the future, the OS should prompt the user that an application wants to do something (eg. accessing your address book) at the point it wants to do it and let the use decide whether or not to allow it - with an option to say "Always do this for [blah]" where [blah] could be "accessing contacts". It has the nice side effect of forcing application developers to design an UI which tells customers what they are trying to do so that they don't hit the "Deny" button as soon as the alert appears.
  That way, people can run applications, test them and even use them without having to subject all their data to the mercy of the developers.
  
  --
  Avantslash - View Slashdot cleanly on your mobile phone.
3. Re:Mobile security by ptbarnett · 2010-09-20 01:30 · Score: 3, Interesting
  
  I've never had an email account hacked before, so I'm pretty convinced that some phone app has leaked my account details (as it's the gmail account tethered to my phone).
  Did you inadvertently reuse your email password somewhere else?
  My wife had her GMail account compromised by a Nigerian IP address. I'm pretty sure it's because she used her email address and password to create a userID at a site publishing historical immigration records.
  She's not reusing passwords anymore.
4. Re:Mobile security by frying_fish · 2010-09-20 01:32 · Score: 1
  
  Slightly off topic I know but.... I have a HTC desire, and I experienced a very similar problem as you. Although I think I tracked down which app it was and got rid of it, wasn't fun having my gmail account spam all the mailing lists I'm a part of, but thankfully google blocked that quickly (and the two times it happened - the first app that I got rid of wasn't the culprit). Anyway, to my point. If you've bought an app in the market place, then wiping your phone doesn't mean you can't have that app anymore. It is tied to your google account that you bought the app with. I have on multiple occassions, for multiple reasons (mostly forgetting to have a gold card in while performing an OTA update, whoops), had to reflash my phone to earlier version and reupdate. On each occassion I have then been able to go back into the market, and redownload the apps I had bought previously, for no extra charge. Also, as a handy bonus, they seem to show up in your download section so you don't need to go searching for them all again. Hope that helps you out.
5. Re:Mobile security by whisper_jeff · 2010-09-20 01:32 · Score: 1
  
  In the future, the OS should prompt the user that an application wants to do something (eg. accessing your address book) at the point it wants to do it and let the use decide whether or not to allow it - with an option to say "Always do this for [blah]" where [blah] could be "accessing contacts".
  Is it just me or doesn't that sound an awful lot like Vista? And we know how popular Vista was...
6. Re:Mobile security by Jurily · 2010-09-20 01:38 · Score: 1
  
  Your phone is too smart to be secure. Buy a $10 Alcatel.
7. Re:Mobile security by Anonymous Coward · 2010-09-20 01:46 · Score: 1, Informative
  
  It does this...you see what privileges it has when you install an app.
8. Re:Mobile security by N1AK · 2010-09-20 02:04 · Score: 2, Insightful
  
  I agree, really, Google should let -us- decide what an app can do.
  Google won't, and shouldn't, add that. Google doesn't know what an application needs to function, a lot of users will block internet/phone etc access and break the application. Google and the app developer will then get bombarded by complaints and help requests. Android will need to match or beat iOS in user friendliness, options that offer nothing to most users and cause negative user experiences aren't going to help do that.
  
  I would like this functionality, even though I would rarely use it. I just don't think it would benefit Android in general.
9. Re:Mobile security by yakumo.unr · 2010-09-20 02:09 · Score: 1
  
  Did you inadvertently reuse your email password somewhere else?
  nope. I'm careful to use letters numbers and extra chars too.
10. Re:Mobile security by Miseph · 2010-09-20 02:09 · Score: 1
  
  Yeah, and popular or not, that was one of the things Vista did right. That was an obvious thing people didn't like, so it was ripe for mockery, but at the end of the day Vista sucked because it screwed up a bunch of other, unrelated, things.
  
  --
  Try not to take me more seriously than I take myself.
11. Re:Mobile security by yakumo.unr · 2010-09-20 02:12 · Score: 1
  
  I was sure that there would be no repurchasing necessary, it's just a hassle to make a list of what to get again, and the time it takes to reinstall them all. Especially frustrating when having no idea which app was the culprit.
  It's not like you can install one app then sit around and wait a few months to see if anything untoward happens before installing the next one to test.
12. Re:Mobile security by Trufagus · 2010-09-20 02:14 · Score: 1
  
  Google has hesitated to do it that way because it is very hard for developers to write their apps like that.
  For the most part, the app has a certain set of requirements - that are clearly stated to the user - and without those requirements being satisfied the app can't run. You can't pick and choose which requirements you want to allow.
  The most important requirements are access to personal data. If an app that has no business reading your e-mail lists shows this as a requirement then don't install it. Hopefully the developers will have to go back and remove that requirement.
  Personally, I would only allow access to my personal data to apps that come from companies or people that I really trust.
13. Re:Mobile security by Anonymous Coward · 2010-09-20 02:42 · Score: 0
  
  Hmm. My wife's Gmail account was hacked recently, but she does not have any Gmail access on her phone. We also checked her various machines for keyloggers/etc. and all of those were clean as well. The only remaining conclusion is that her password was guessed by some dictionary attack (in particular, a dictionary attack based on phrases.)
  I doubt it was your phone, otherwise many many other people would have seen it as well.
14. Re:Mobile security by icebraining · 2010-09-20 02:50 · Score: 1
  
  Yes, but you can't pick and choose what privileges you want to give it, can you?
  The problem with the pick and choose model it's the pain it must to program the app filled with conditionals, or make it work at all.
  
  --
  Dilbert RSS feed
15. Re:Mobile security by z.cliffe.schreuders · 2010-09-20 03:25 · Score: 2, Interesting
  
  I love to see comments like this, because that is what my research is designed to do. Make it easy for end users (or admin) to specify what an application is supposed to do, and the program is restricted to the behaviour that is needed to do those things. For example, so you can say "this program is a web browser and an email client". Then, if you like, you can give some app-specific details such as "I download stuff to this directory", or "I only want access to these hosts". Then the program cannot do anything beyond what would be expected of those types of programs. In case you are interested, a Linux implementation is available: http://schreuders.org/FBAC-LSM
16. Re:Mobile security by Mr.Mustard · 2010-09-20 03:26 · Score: 1
  
  You may be able to use an app like appbrain to easily reinstall the apps you have now. I do not know for sure, as I have not tried it, but it may be an option worth looking in to. I think there may be a way to get appbrain to selectively move apps over from the old configuration to the new one and, if properly configured, automatically install them. Again, do your own research to be sure.
  The tricky part is making sure you have a copy of any data/configuration you wanted to keep.
  
  --
  fnord
17. Re:Mobile security by TheLink · 2010-09-20 03:36 · Score: 1
  
  The problem is that when you install an application, Android gives you a big long list of things that the app wants to do.
  This is not a problem. This is a good thing. Google should perhaps group some of the more common lists and call them by friendlier names.
  I have proposed a similar thing for ubuntu and other linux distros: https://bugs.launchpad.net/ubuntu/+bug/156693
  
  In the future, the OS should prompt the user that an application wants to do something (eg. accessing your address book) at the point it wants to do it
  
  This would be annoying, and normal users are likely to still not make the right decisions.
  For people who can't be bothered to read and understand the big long list of things that an app wants to do, what Google or whoever should do is to allow 3rd parties to audit and certify a given app for a given big long list of things it wants to do. To make it easy, Google could add a site/service/app that allows such 3rd parties to audit and certify/vouch for apps.
  That way, you can say "I trust X to check the apps for me". You should also be able to optionally whitelist everything signed by X, so if an app and its list is certified by X, you don't get any prompts.
  Say your parents, relatives and friends might trust you about these "IT" stuff, and so you go to the android app site, and check a particular app for them (going through the long list to see if its reasonable), or a bunch of apps.
  Or employees of Company B might get corporate phones which can only run apps certified by Company B (whose cert is installed in the phones/computers).
  Or people might choose to trust apps certified by some IT security firm.
  The benefit to Google? Google gets to know who are the informal "IT advisors" for various groups of people. This can be useful for advertisers.
  Google might even allow entities to charge subscription for access to the certification advice, and take a cut from it.
  This security model is definitely better than the current security model which antivirus software and normal people have to cope with:
  The current model is: "given a computer program, without it's source code or full inputs, figure out whether it would screw you or not".
  Computer scientists should notice that at least with the "Halting Problem" you are given the source code and the full inputs, and even then it is still considered unsolvable for the general case.
  --
  
  Too many replies beneath your current threshold
18. Re:Mobile security by IamTheRealMike · 2010-09-20 03:44 · Score: 2, Informative
  
  Hey,
  I work on the Gmail team. What happened to you is not related to your use or purchase of an Android phone. In fact, the spammer that logged in to your account wasn't using a mobile phone at all. The reason the session shows up as from a mobile device in your recent activity console is that some popular spammer tools identify themselves to our servers as a mobile phone so that it is allowed to use the mobile HTML UI - presumably as it's easier for them to reverse engineer. But it's actually just a program running on a regular computer.
  Passwords can be stolen through a variety of means. I suggest you read this post in the Gmail support forum for more information on how it might have happened. The top three ways are phishing, keylogger viruses and re-using your Gmail password at other websites that then get hacked (this is very common).
  In other words, you shouldn't need the Android anti-virus product and can uninstall it if you want. I have never heard of somebody being infected with an Android virus - just make sure to read the list of requested permissions and you should be OK.
  Hope that helps and sorry to hear about your experience, but happy to hear we managed to block it!
19. Re:Mobile security by SuperQ · 2010-09-20 03:52 · Score: 1
  
  Correlation != Causation.
  The only way for an app to get your gmail credentials out of your phone directly is if it asked for your gmail password.
20. Re:Mobile security by SuperQ · 2010-09-20 03:58 · Score: 1
  
  The problem is the Android core has no way to magically know the context for why the app needs access to specific APIs. "Why would this barcode app need access to my contact?" For one you can include contact information in a barcode and it makes it easy to add contacts.
  The real problem is that the API access controls are not fine grained enough. The barcode reader app should only have WRITE access to your contacts, not READ.
  Users (like me) do NOT want to be continuously prompted for stupid "ARE YOU SURE!?" when running apps on a mobile phone.. See Windows Vista. Agreeing to allow an app data access at install time is by far the least intrusive but still useful method I've seen for data protection I've seen.
21. Re:Mobile security by Darkness404 · 2010-09-20 04:51 · Score: 1
  
  No, I don't think that most users would block it, but it would allow you to have security without a closed ecosystem. For example, why would something like, say, a media player need access to my entire filesystem to play music when I could just limit it to read permissions on my music directory (and sub-directories). These things are what prevent security flaws and let you actually control your phone.
  
  Plus, it would allow people without unlimited data plans to use an Android phone without wondering what it was doing in the background, etc.
  
  --
  Taxation is legalized theft, no more, no less.
22. Re:Mobile security by js_sebastian · 2010-09-20 04:59 · Score: 1
  
  I agree, really, Google should let -us- decide what an app can do.
  Google won't, and shouldn't, add that. Google doesn't know what an application needs to function, (..)
  Yes, google does know... more precisely, your android phone knows. Android apps come with a manifest file that specifies which of over 100 different privileges it requires to function (in fact, at usenix security last year, the chief android security guy was saying that the large number of distinct privileges is a usability pitfall that they are working on improving on). As a user, you are presented with a summary of this list and can then decide whether to install the entire application (and grant it all the privileges it has requested), or not install it at all. Being instead able to install the application but deny some specific privileges makes sense. Of course, if the app is not coded to check for success of the operations you are denying it and handle the error this will likely lead to a crash. Still, this could be a useful feature for power-users, perhaps hidden behind some "advanced" button during the installation process.
23. Re:Mobile security by avatar139 · 2010-09-20 07:03 · Score: 1
  
  I'm worried because in all the years I've had a Google mail account I haven't had any issues, yet a month after getting an Android 2.1 phone, despite being really careful about only installing high rated applications with tens of thousands of users and mostly keeping an eye on what they're allowed to access, my gmail account was hacked and used to send out a spam email via a mobile device in canada.
  I've never had an email account hacked before, so I'm pretty convinced that some phone app has leaked my account details (as it's the gmail account tethered to my phone).
  Admittedly Google immediately suspended my account due to suspicious activity (access from Mobile Canada (71.17.214.49), I live in the UK), and a token to my mobile phone was how I unlocked it and changed my password, but I'm still rather wary now despite how much I love my Galaxy S mobile.
  I have bought apps I don't want to lose wiping the phone, and I have no real way to tell what it may have been that leaked my data.
  I have droidsecurity antivirus installed now, but wish google could offer some stronger post-install controls on what an app's allowed to do.
  It's interesting that most journalists covering technology news make a habit of making predications about how the wait time for the iOS application development submission review process adds so much to development costs that it will (supposedly) cause application developers to jump ship to other platforms, but I find what they tend to overlook is the fact that the more laissez-faire approach taken in the Android Marketplace causes that cost to end up being passed onto the customer in the form of having to pay for anti-spyware/malware subscriptions...
  
  --
  I'm honest enough to admit I lie to myself.
24. Re:Mobile security by jschottm · 2010-09-20 09:17 · Score: 1
  
  A suggestion for your wife (and just about everyone) - using a single good password salted with the name of the website's initials will help her remember passwords while greatly increasing security.
  For example, if my core secure password was '^hU@8c#}]2', my password for this site would be '/^hU@8c#}]2.' while my password for Bank of America would be 'B^hU@8c#}]2oA'. This is enough to keep simple password theft from a website with weak security leading to widespread compromise without having to memorize dozens of difficult passwords. I still use specific and unique passwords for really important things, but this helps keep the unimportant passwords secure but easy.
25. Re:Mobile security by Anonymous Coward · 2010-09-20 09:40 · Score: 0
  
  I'm worried because in all the years I've had a Google mail account I haven't had any issues, yet a month after getting an Android 2.1 phone, despite being really careful about only installing high rated applications with tens of thousands of users and mostly keeping an eye on what they're allowed to access, my gmail account was hacked and used to send out a spam email via a mobile device in canada.
  I've never had an email account hacked before, so I'm pretty convinced that some phone app has leaked my account details (as it's the gmail account tethered to my phone).
  Admittedly Google immediately suspended my account due to suspicious activity (access from Mobile Canada (71.17.214.49), I live in the UK), and a token to my mobile phone was how I unlocked it and changed my password, but I'm still rather wary now despite how much I love my Galaxy S mobile.
  I'm pretty sure that you can't get access to a phone's google username and password through an app. They may be some exploit out there, but if you've ever signed up on a website with that email and the same password as your gmail account, it's probably more likely the information was gathered that way.
  
  I have bought apps I don't want to lose wiping the phone, and I have no real way to tell what it may have been that leaked my data.
  You won't have to re-buy the apps after a phone wipe. They will be listed in the market as "Purchased" and can be reinstalled at no charge. I'm not sure about how apps where you purchase a special "License key" app would work with that though. If you want to try it out, you can uninstall one app and you'll see the status set in the market afterwards.
26. Re:Mobile security by yakumo.unr · 2010-09-21 00:35 · Score: 1
  
  I'm well aware that correlation != causation, but...
  I use win7 systems with UAC on full, firefox with noscript and adblock, and Microsoft Security Essentials. I install only software I require from trusted sources, tracking it back to the source page.
  I keep a general eye on Task Scheduler, and on currently running things with Sysinternals Process Explorer, and AutoRuns to make sure I'm not running anything I don't wish to.
  If I really want to check out something new and unproven it goes in a VM and gets scanned by 50 AV engines on virustotal.com, I know how to trace malware with Process Monitor and keep an eye on current events with regards to rootkit detection.
  I've used googles SSL options since availability, and use SSL elsewhere whenever I can.
  I laugh at phishing in general, do my best to educate others on it, and companies like my mobile provider's 3rd party contractors that call me from unknown numbers and ask me to confirm my pin before we can talk get politely explained the irony of their security protocol, and that they can let me call in to them on a number I trust instead.
  I don't reuse my passwords. I don't ever discuss them with anyone, I don't let my browser store important passwords, I manually type in domains and occasionally double check my hosts file for redirects, I check the SSL cert is valid where applicable.
  I manage the router in the home myself and use WPA2 with a strong key, and keep an eye on the connection logs in general, the systems consider it a public network (by win7 terms) so no access to other machines. Despite living in a 2 foot thick limestone wall farmhouse in the middle of nowhere.
  I even had a good laugh when Google Maps android app was last updated and suddenly required pretty much every privilege on the phone, and seriously considered not updating (not that I think it was a Google App that leaked my info).
  If I was any more paranoid I'd be a pure linux geek instead, there really isn't a great deal more a person can do.
  No other account I have has been compromised, only the one that I really haven't been using lately other than that it's the one attached to the phone.
  My email account is by no means a high profile name that would attract targeted hack attention.
  I certainly didn't want to damage Android's rep with my post, I LOVE my phone otherwise, I just really do wish there were better post-install access controls, and I really don't see how my account info could have been leaked otherwise, it's not impossible it's just highly unlikely.
  correlation != causation but it sure does cause for unwanted paranoia.
  PS.
  Googleing android malware certainly does comes up with a few stories, so it wasn't beyond the realms of possibility from my point of view.
  eg. http://www.computerworld.com/s/article/9180561/New_Android_malware_texts_premium_rate_numbers
  http://venturebeat.com/2010/07/28/android-wallpaper-app-that-steals-your-data-was-downloaded-by-millions/
  (It blows my mind people pay for wallpaper on phones with bluetooth/microusb)
Silly nerds... by Darkness404 · 2010-09-20 01:13 · Score: 3, Insightful

but it doesn't answer how it helps if an intruder is getting into Apps through a lost or stolen phone

When you lose your phone, the vast, vast, vast, vast majority of the time they just want to wipe your iPhone and sell it to the local pawn shop. They don't care about your data, your songs, your apps, etc. they simply see that shiny, new hardware = money. Same thing with laptops, they don't care about the data on it, they want to wipe "that funny looking OS" off of it and put a pirated copy of XP on there and sell it on eBay.

The idea that stolen gadgets are going to be used for something beyond simple hardware really overestimates either your value of data or the intelligence of thieves.

--
Taxation is legalized theft, no more, no less.
1. Re:Silly nerds... by ibsteve2u · 2010-09-20 01:18 · Score: 2, Interesting
  
  You refer to a time from before the day Google incentivized the stealing of phones by making them [a] key to business espionage.
  
  --
  Orwell: "In a Time of Universal Deceit, telling the Truth is a Revolutionary Act"
2. Re:Silly nerds... by camperdave · 2010-09-20 01:23 · Score: 1
  
  When you lose your phone, the vast, vast, vast, vast majority of the time they just want to wipe your iPhone and sell it to the local pawn shop.
  
  How did my phone magically become an iPhone?
  
  --
  When our name is on the back of your car, we're behind you all the way!
3. Re:Silly nerds... by xtracto · 2010-09-20 02:38 · Score: 1
  
  Nope...
  When you lose your phone (nowadays), the vast majority of thieves want to look at your pictures and videos to see if you have some interesting (aka pr0n) stuff there.
  Some people are so stupid as to even use the phone (some of them actually buy a new chip!).
  Believe me, I know the nature of these kind of thieves. During my high school I was friend with some of them.
  
  --
  Ubuntu is an African word meaning 'I can't configure Debian'
4. Re:Silly nerds... by Confusador · 2010-09-20 03:24 · Score: 1
  
  A wizard did it. You dare underestimate the power of Jobs?
5. Re:Silly nerds... by Nick+Ives · 2010-09-20 04:52 · Score: 1
  
  Google is late to that party: Blackberry and iPhone had full Exchange support before Android.
  Anyway, Exchange allows admins to do a remote wipe, does it not?
  
  --
  Nick
6. Re:Silly nerds... by ibsteve2u · 2010-09-20 05:22 · Score: 1
  
  The question, of course, is can a business remotely ascertain if other servers, disks, and magnetic and optical storage (perhaps because of legitimate efforts to protect and back up their data; perhaps for other reasons) hold some or all of their data and wipe them, too?
  
  The entire theory of "the cloud" is that you surrender the manipulation - and often the storage - of your data and in turn rely upon trust and trust alone to guarantee the security of your data. The reality of the usefulness of "trust" as a business security measure, however, can be ascertained by pondering the sheer numbers of lawyers in the world.
  
  --
  Orwell: "In a Time of Universal Deceit, telling the Truth is a Revolutionary Act"
7. Re:Silly nerds... by bhcompy · 2010-09-20 07:03 · Score: 1
  
  Which is why LA County public safety(Fire, Sheriffs, etc) require everyone working with them to have all staff with access to the data(including the janitor at the datacenter) to have FBI type background checks done before you can work with access to their live data. This has present a problem for Google, as if I recall they were looking at Google Apps as a cheap alternative to Office with the added internet availability(why not just use OO.org I don't know).
  
  Ultimately, if it's not within your network, you can't consider it as secure as you'd want, and businesses who use these "internet cloud" services to use corporate email and file storage are doing something that I'd generally consider against standard data security protocol because the only thing between your data and someone who wants it is a publicly accessible logon prompt rather than a firewall or two, additional domain credentials, etc.
8. Re:Silly nerds... by mjwx · 2010-09-20 13:46 · Score: 1
  
  The idea that stolen gadgets are going to be used for something beyond simple hardware really overestimates either your value of data or the intelligence of thieves.
  Because no thief would check your email or look for credit card details. OK, the moron that knocked over your house whilst you were at the pub wouldn't, he'd just sell it to a pawnbroker (or put it in the free classifieds) but pawnbroker is generally smart enough to check for any obvious money making data. If you've left your CC details anywhere, check your email for receipts, checking the obvious things like Itunes, anything incriminating, even addresses, bills and bank statements that can be used (or sold) in identity theft. ID theft in Australia is becoming a serious issue, from people stealing bills out of your letter box to gathering data online. It will probably become larger then physical theft in a few years.
  
  Just last week there was a story about how criminals were able to sell a house due to a cracked email account.
  
  --
  Calling someone a "hater" only means you can not rationally rebut their argument.
How many factors are secure? by thethibs · 2010-09-20 01:17 · Score: 4, Insightful

but it doesn't answer how it helps if ...
Judgecorp should wait until after second coffee to post.
What happens when an attacker has both factors in a two-factor situation is that security is breached. The same applies for any number of factors.
The objective is to improve security, nothing can guarantee it. No "answer" is needed.
(.....)

--
I'm a Programmer. That's one level above Software Engineer and one level below Engineer.
1. Re:How many factors are secure? by 140Mandak262Jamuna · 2010-09-20 02:13 · Score: 1
  
  What happens when an attacker has both factors in a two-factor situation is that security is breached. The same applies for any number of factors.
  The objective is to improve security, nothing can guarantee it. No "answer" is needed.
  (.....)
  Most (grown) people are unfamiliar with passwords and all its implications. They re use passwords, they never change their passwords and they make us extremely simple passwords. But most people are aware of the value of the cell phone and they will notice it if they lose it. So to that extent it will help. Of course the validation code from Google should not identify the google account in the text message. Else, anyone who finds your lost cell phone could potentially hijack your account.
  
  --
  sed -e 's/Chuck Norris/Rajnikant/g' joke > fact
2. Re:How many factors are secure? by leuk_he · 2010-09-20 02:13 · Score: 1
  
  Go for 3 factor?
  -Something you know. (password)
  -Something you have (phone)
  -Something you are (voice print)
  and make them more secure:
  -Password contain 20 chars
  -A one time pad that generates new password every 10 minutes.
  -Retinal laser scan combined with fingerprint scan.
  By the way, loosing you phone does not loose your account, you will need to loose the password or some other secret as well. And even then you will have to need to trust the maintainers of the server.
3. Re:How many factors are secure? by xtracto · 2010-09-20 02:44 · Score: 1
  
  By the way, loosing you phone does not loose your account, you will need to loose the password or some other secret as well. And even then you will have to need to trust the maintainers of the server.
  There's a joke about setting your phone free, liberating your account and relaxing your password around there.
  Other than that I like your idea of your 3 factor password, but ONLY if it could be used to login in to ALL internet services.
  Actually that is something achievable with open source. If setup a "trusted server" server to which you can connect (using your 3 factor) and then that server automatically logs in/redirects you to all the services you use. That might be doable using VNC or the like... I only have to figure out scripts that log-you-in into Facebook,GoogleApps,Slashdot,HostelWorld,Etc... each time you log to your trusted server.
  
  --
  Ubuntu is an African word meaning 'I can't configure Debian'
4. Re:How many factors are secure? by zindorsky · 2010-09-20 02:47 · Score: 1
  
  What happens when an attacker has both factors in a two-factor situation is that security is breached.
  Fuck everything, we're going to 5 factor security.
  
  --
  If the geiger counter does not click, the coffee, she is not thick.
5. Re:How many factors are secure? by Anonymous Coward · 2010-09-20 06:05 · Score: 0
  
  The trusted server is called OpenID.
Are you suggesting by georgeb · 2010-09-20 01:18 · Score: 1

... that Paris Hilton lied when she said those pictures were obtained from her stolen phone?
1. Re:Are you suggesting by Darkness404 · 2010-09-20 01:25 · Score: 1
  
  I'm suggesting that none of the readers of /. are Paris Hilton.
  
  Yeah, if you are a celebrity, people are going to look through your cell phone. But I'm not a celebrity, I don't think you are and neither is most of /. (I don't think that the average person cares to look through Linus Torvald's cell phone) and this idea that our data is somehow awesomely valuable to the average person and would be stolen is a bit too much of ego. No one cares about your source code to yet another text editor, no one cares about pictures of your cat, no one really cares about your high score on Galaga, they do however see a nice Droid/iPhone/BlackBerry phone and know that they can sell that for a few extra bucks.
  
  --
  Taxation is legalized theft, no more, no less.
Good Idea by Striikerr · 2010-09-20 01:23 · Score: 1

Two factor authentication is the way to go. Sending a code to your phone is a great idea as cell phones / smart phones are very much a commonplace item in a user's inventory. Relying upon passwords alone is incredibly risky and should be augmented by a second form. This comes generally down to a physical special-use hardware token or we can use or better yet, use a cell phone and send the code to it instead. I know that this feature is available to World of Warcraft users (via the iPod / iPhone apps) and many banks have this as an option for online banking. The complaints revolving around losing one's cellphone are pointless. Yes, it compromises the second layer of authentication but the intruder would still need the initial password. The point is, it's a huge step forward in terms of security and should be adopted by anyone who is concerned about someone else capturing / guessing their password and accessing files etc.
1. Re:Good Idea by rhsanborn · 2010-09-20 01:49 · Score: 1
  
  I bet many people will sign up for it, and less than 10% will stick with it, because it's inconvenient. About the 4th time they have to dig through their bag to find their phone so they can log in and check their email, they'll disable it. I do like the ability however, perhaps they could even sell it as a service to banks, etc, where people might not be so averse to the extra steps.
It's only a problem for Apple employees by Overzeetop · 2010-09-20 01:32 · Score: 1

...and they don't use Google apps, right?

--
Is it just my observation, or are there way too many stupid people in the world?
Fuck Everything, We're Doing 3 Factor by Anonymous Coward · 2010-09-20 01:37 · Score: 1, Funny

Would someone tell me how this happened? We were the fucking vanguard of security in this country. The password needing numbers was the password to own. Then the other guy came out with a need for numbers. Were we scared? Hell, no. Because we hit back with a little thing called the case sensitive and symbols. That's needing to remember your capitals and lowercases. For complexity. But you know what happened next? Shut up, I'm telling you what happened—the bastards went to 2 factor. Now we're standing around with our cocks in our hands, selling case sensitive in our passwords. Capitals or no, suddenly we're the chumps. Well, fuck it. We're going to 3 factor.
Sure, we could go to 2 factors next, like the competition. That seems like the logical thing to do. After all, one worked out pretty well, and two is the next number after one. So let's play it safe. Let's add on symbols and call it the strong passwords. Why innovate when we can follow? Oh, I know why: Because we're a business, that's why!
You think it's crazy? It is crazy. But I don't give a shit. From now on, we're the ones who have the edge in the security game. Are they the best a man can get? Fuck, no. Google is the best a man can get.
What part of this don't you understand? If one factor is good, and two factors are better, obviously three factors would make us the best fucking password that ever existed. Comprende? We didn't claw our way to the top of the security game by clinging to the one factor industry standard. We got here by taking chances. Well, three factors is the biggest chance of all.
Here's the report from Engineering. Someone put it in my pocket: I want to log into shit with it. They don't tell me what to invent—I tell them. And I'm telling them to stick two more factors in there. I don't care how. Make the factors so varied they're everywhere. Put some in their iPad. I don't care if they have to cram the third factor in sequence to the other two, just do it!
You're taking the "protected" part of "password protected" too literally, grandma. Cut the strings and soar. Let's hit it. Let's roll. This is our chance to make security history. Let's dream big. All you have to do is say that three factors can happen, and it will happen. If you aren't on board, then fuck you. And if you're on the board, then fuck you and your father. Hey, if I'm the only one who'll take risks, I'm sure as hell happy to hog all the glory when the three factor security becomes the security tool for the U.S. of "this is how we secure now" A.
People said we couldn't go to case sensitive. It'll cost a fortune to manufacture, they said. Well, we did it. Now some egghead in a lab is screaming "three factor's crazy?" Well, perhaps he'd be more comfortable in the labs at Microsoft, working on fucking administrator permission. Confirm permission, my white ass!
Maybe I'm wrong. Maybe we should just ride in Apple's wake and make phones. Ha! Not on your fucking life! The day I shadow a penny-ante outfit like Apple is the day I leave the security game for good, and that won't happen until the day I die!
The market? Listen, we make the market. All we have to do is put her out there with a little jingle. It's as easy as, "Hey, security with anything less than three factors is like twittering your passwords to the world." Or "You'll be so secure, you won't even need condoms anymore." Try "Your encryption's gonna be so complex, Turing's going to come back to make an encryption algorithm with the key YOU ARE FUCKING AWESOME."
I know what you're thinking now: What'll people say? Mew mew mew. Oh, no, what will people say?! Grow the fuck up. When you're on top, people talk. That's the price you pay for being on top. Which Google is, always has been, and forever shall be, Amen, three factors, sweet Jesus in heaven.
Stop. I just had a stroke of genius. Are you ready? Open your mouth, baby birds, cause Mama's about to drop you one sweet, fat nightcrawler. Here she comes: Put another password on that fucker, too. That's right
For the rest of us, though... by Just+Some+Guy · 2010-09-20 01:46 · Score: 1

it doesn't answer how it helps if an intruder is getting into Apps through a lost or stolen phone.
Nor does it handle lost luggage, traffic jams, or slow-pouring ketchup. Yes, we all bow to your cleverness at identifying situations that it doesn't address, but in the 99.9999% of other situations, it's a nice bonus.

--
Dewey, what part of this looks like authorities should be involved?
Nor does it help... by itsdapead · 2010-09-20 01:49 · Score: 1

but it doesn't answer how it helps if an intruder is getting into Apps through a lost or stolen phone.
Nor does it help if your employees are disclosing your secrets at gunpoint while simultaneously receiving the oral attentions of Halle Berry.
But what it does do is what it says on the tin: prevents people getting in to your apps by guessing a user's password is "swordfish" (or "joshua" or "kronos" or "peekaboo" or the cat's birthday) or otherwise fishing or sniffing it.

--
In a survey of 100 programmers, 111111 thought that duck-typing was a good idea.
1 + 1 = ? by horza · 2010-09-20 02:11 · Score: 1

I don't think judgecorp can count. The idea of the 2 step authentication is that there are two steps. This means that just having your password is not enough. It also means that just having your mobile phone is not enough either.
This means that if somebody steals your phone, they still can't get in as they don't have your password.
Phillip.

--
Property for sale in Nice, France
Schneier and Target by tepples · 2010-09-20 02:25 · Score: 1

That's a great example of why some argue that the "secret questions" approach to "enhanced security" is actually less secure than just a password.
Bruce Schneier has written about this, twice. Yet Target.com insists on having credit card holders set five (!) secret questions.
That would require an Android pod touch by tepples · 2010-09-20 02:33 · Score: 1

Your phone is too smart to be secure. Buy a $10 Alcatel.
If I buy a dumb phone, then on what device will I run apps? Google hasn't officially opened the Market to Android devices other than phones.
Seriously? There is no question. by Anonymous Coward · 2010-09-20 03:56 · Score: 0

What do they mean "it doesn't answer the question..." about if someone has your phone. If they have your phone, duh, it won't help. Then again, they will probably not need google apps, since they can use the native mail applications (if it's a smartphone at least), and have all your data that's on the phone.
*two*-factor by Altrag · 2010-09-20 09:50 · Score: 1

but it doesn't answer how it helps if an intruder is getting into Apps through a lost or stolen phone
That would be what the first factor is for. Unless you also store your passwords on your phone in which case you've just intentionally reduced yourself back to one-factor security and well.. don't do that.
Two-factor security isn't 100% perfect. Its always possible for someone who knows your password to also steal your phone. But the chance is significantly reduced compared to the individual chances of your phone being stolen or your password being keylogged/otherwise compromised. Three-factor security would be better still (a biometric "touch" perhaps?).. 100-factor security would be better still. But as with most security issues, you get an annoyance/benefit trade-off and its a matter of figuring out how much people will be willing to do to prevent their friends from changing their facebook status to "I am the suxx0r!" That amount will go up as time goes on of course -- between more people being aware of security issues, and technology making the extra factors less intrusive (oh, and they have to be free -- few home users will be willing to drop $50 or $100 for a biometric scanner for example. Unless they've already been a victim of identity theft.)