Comments
Twitter Two-Factor Lockout: One User's Horror Story
Newest First  |  Oldest First  |  Threaded View
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
10/31/2013 | 1:43:55 PM
re: Twitter Two-Factor Lockout: One User's Horror Story
My Twitter account is not desperately important to me, for that matter.
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
10/31/2013 | 1:40:47 PM
re: Twitter Two-Factor Lockout: One User's Horror Story
Reminds me of a time I was in rural New Hampshire, had exactly $1 on me, and went to an ATM -- only to find that my card wasn't working. As I spent 45 minutes on the phone with my bank, they were insistent that I give them proof of one of three recent transactions via information from a receipt. (Only by the grace of keeping a George Costanza-like wallet did I actually find such a receipt.)

I remember shouting at the person on the phone, "I want LESS security, NOT MORE!!!"
moarsauce123
50%
50%
moarsauce123,
User Rank: Ninja
10/30/2013 | 8:18:52 PM
re: Twitter Two-Factor Lockout: One User's Horror Story
The problem is that two factor authentication mechanisms insist on using a smartphone. There are plenty of other alternatives such as PC, tablet, landline, or even snail mail plus authentication questions that the user creates and, of course, answers. I would never use the "Name of first pet" question because I did not have pets growing up and many of the other questions do not allow for the correct answers because for me they include special characters that US designed systems are too dumb to handle.
That all was to be solved with the backup codes and I think it is a goo approach. If users are too careless to take care of the backup then oh well, they are out of luck. In the end this is just a Twitter account...who needs Twitter anyway?
Byurcan
50%
50%
Byurcan,
User Rank: Apprentice
10/30/2013 | 12:07:28 PM
re: Twitter Two-Factor Lockout: One User's Horror Story
Interesting story, and a word of warning. This will definitely remind me to save my backup codes where I absolutely will remember.
Aroper-VEC
50%
50%
Aroper-VEC,
User Rank: Apprentice
10/29/2013 | 4:55:54 PM
re: Twitter Two-Factor Lockout: One User's Horror Story
Whether it's good or bad, it's better than not having it. That being said, Twitter does warn you to print it out and save it in a safe place. Security is not just the vendor's responsibility. Diligence on the part of the end user is paramount.

I totally agree that the system needs some tweaking, enhancement, and overall revamping but, in the meantime, save that backup code in a safe place!
howardgr
50%
50%
howardgr,
User Rank: Apprentice
10/29/2013 | 4:54:52 PM
re: Twitter Two-Factor Lockout: One User's Horror Story
Good piece, Matthew. I recommend that Twitter do as you suggest, and provide a more complete 2 factor offering. I'm off to find where my 2nd code is now...
wht
50%
50%
wht,
User Rank: Strategist
10/29/2013 | 4:50:39 PM
re: Twitter Two-Factor Lockout: One User's Horror Story
Is Twitter run by twits? I have never encountered a lockout like his after years of using multiple websites with passwords and 2 factor protection. In every case it was not that difficult to establish my identity, with or without a support call, and re-establish access the same day or the next day.
David F. Carr
50%
50%
David F. Carr,
User Rank: Author
10/29/2013 | 1:35:03 PM
re: Twitter Two-Factor Lockout: One User's Horror Story
I find myself much more fearful of a security system that could lock me out of my account than I am of any intruder.


The Business of Going Digital
The Business of Going Digital
Digital business isn't about changing code; it's about changing what legacy sales, distribution, customer service, and product groups do in the new digital age. It's about bringing big data analytics, mobile, social, marketing automation, cloud computing, and the app economy together to launch new products and services. We're seeing new titles in this digital revolution, new responsibilities, new business models, and major shifts in technology spending.
Register for InformationWeek Newsletters
White Papers
Current Issue
InformationWeek Tech Digest - July 22, 2014
Sophisticated attacks demand real-time risk management and continuous monitoring. Here's how federal agencies are meeting that challenge.
Flash Poll
Video
Slideshows
Twitter Feed
InformationWeek Radio
Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.