Comments on: FIDO Alliance and the end of 2FA revenue to CPaaS vendors https://bloggeek.me/fido-alliance-and-the-end-of-2fa-revenue-to-cpaas-vendors/ The leading authority on WebRTC Wed, 18 May 2022 11:55:40 +0000 hourly 1 By: Tsahi Levent-Levi https://bloggeek.me/fido-alliance-and-the-end-of-2fa-revenue-to-cpaas-vendors/#comment-148822 Wed, 18 May 2022 11:55:40 +0000 https://bloggeek.me/?p=73133#comment-148822 In reply to Fred.

Thanks Fred!

I think this will go like Blackberry and the iPhone – only slower. 2FA/OTP has peaked or will peak soon. Because once FIDO comes to devices and enabled for application authentication it dilutes the need for passwords and 2FA/OTP while improving security. And you don’t ask users – you “force” it on them. It will also probably cost less to maintain than 2FA (no SMS).

Authenticator apps are a nag. I am using them and grumbling about it all the time. A necessary evil just like 2FA.

And yes, 2FA over SMS has years until it dies, but I think it can now be considered a legacy technology with a death date.

]]> By: Fred https://bloggeek.me/fido-alliance-and-the-end-of-2fa-revenue-to-cpaas-vendors/#comment-148821 Wed, 18 May 2022 11:34:13 +0000 https://bloggeek.me/?p=73133#comment-148821 Fido keys are here since a long time and regular consumers have no clue what they are. I believe 2fa over sms (and voice calls) still have years ahead, also considering entreprises are slow in changing their 2fa implementations.
For average end users and consumers, I believe sms based 2fa more likely to be replaced by authenticator apps (Google authenticator, ms authenticator, duo.,…) and/or in-app notifications.

]]>