nanog mailing list archives

Re: Malicious SS7 activity and why SMS should never by used for 2FA

From: Mark Tinka <mark@tinka.africa>
Date: Mon, 19 Apr 2021 20:34:16 +0200



On 4/19/21 17:48, William Herrin wrote:

Convenience is the most important factor in any security scheme.


But often not at the top of the implementation priority list.

Hint: carrying around a separate hardware fob for each important
Internet-based service is a non-starter. Users might do it for their
one or two most important services but yours isn't one of them.


You make my point for me.

Mark.

Current thread:

Re: Malicious SS7 activity and why SMS should never by used for 2FA, (continued)
- - - Re: Malicious SS7 activity and why SMS should never by used for 2FA Mark Tinka (Apr 18)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA John Adams (Apr 18)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA William Herrin (Apr 18)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA John Adams (Apr 18)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA Tom Beecher (Apr 19)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA Mel Beckman (Apr 19)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA Mark Tinka (Apr 19)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA William Herrin (Apr 19)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA John Adams (Apr 19)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA John Levine (Apr 19)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA Mark Tinka (Apr 19)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA Mike (Apr 20)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA Mel Beckman (Apr 20)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA Tom Beecher (Apr 19)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA Mark Tinka (Apr 19)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA Mel Beckman (Apr 19)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA Tom Beecher (Apr 19)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA Mel Beckman (Apr 19)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA Tom Beecher (Apr 19)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA Mel Beckman (Apr 19)
    - Re: Malicious SS7 activity and why SMS should never by used for 2FA Tom Beecher (Apr 19)

(Thread continues...)