• rollingflower@lemmy.kde.social
    link
    fedilink
    arrow-up
    2
    ·
    8 months ago

    Not for authentication. No idea if this is not a thing, but banks here in Germany all have their weird proprietary TOTP app that checks if your device is rooted or now even if it is a “Google certified OS”.

    You can use some weird hardware device instead with the obvious drawbacks.

    • MonkderDritte@feddit.de
      link
      fedilink
      arrow-up
      3
      ·
      edit-2
      8 months ago

      all have their weird proprietary TOTP app

      But don’t support standards like WebAuthn or even FIDO 2.

    • SmoothLiquidation@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      8 months ago

      My favorite thing is when banks don’t allow passwords that have spaces in them or are more than 12 characters long.

      Honestly there should be a standard of what security means, like how passwords are stored and how TOTP is implemented, and if a bank doesn’t implement it then THEY are responsible for any “identity theft” that happens on their site, not the users.

      • rollingflower@lemmy.kde.social
        link
        fedilink
        arrow-up
        2
        ·
        8 months ago

        Looking at you, fucking Paypal.

        Or yes, my bank wanting only numbers not even letters.

        Literally the only passwords I dont have in Firefox.