9:58 AM

The solution to the internet's current hacker woes... correct me if I'm wrong here.

Keep user data offline and only accessible via a one time only end to end encrypted handshake based on device being used. This handshake only activated via three factor authentication - something you know, something you are, and something you have. Your password, your cell phone, and your cell phone's facial recognition software or fingerprint scanner. Two factor authentication is already in place for the major email sites like Microsoft and Gmail. All they need to do is make this mandatory, and implement facial recognition and fingerprint scanning in their authentication apps so this is needed to open the app and obtain the key. LastPass has already thought of this in their own authentication app. If websites start implementing single logon via Microsoft, Google, etc, this makes the whole process much simpler for users. They only need to log in one time on a new device via their Microsoft or Google account to gain access to all their accounts. Are you following me?

Once user goes through three factor authentication process, they initiate the magic handshake to get their user data on the roll. This only needs to be done ONCE. There's no freaking reason at all to keep their data accessible online all the time. This is one major screw up right here. They are the only ones that need access to their data. Why not just let them have that access that one time to get it on their device in a uniquely encrypted format? We no longer have devices with so little memory space that we need to conserve it.

Networks, and the internet especially, was never designed to keep anything stored on them private. Engineers need to stop acting like they can defy the laws of... well, engineering. ;) Only data meant to be shared should be shared on the internet. Derrrrr....

If it is only meant to be shared with a specific entity, all possible precautions should be taken to make sure no other entities can access that data. This is where end to end encryption and three factor authentication come into play. This is why they exist in the first place. This is why system administrators everywhere become grey and start losing hair in their 30s... because no one freaking understands this very concept right here and bypasses it all, replacing their default randomized password with something like God12345.


You Might Also Like

0 comments