Kevin Townsend gathers some expert opinion for Infosecurity Magazine on Apple’s venture into optional two-step authentication using trusted devices in Apple rolls out 2-factor authentication. Perhaps I should say ‘some expert opinion plus mine’ 🙂
While I have a slight reservation about the way in which the service is presented, I think the idea is a good step forward for Apple ID users. The only weak point right now is the issue about iGadget screenlocking in iOS 6.1.3, as long as people do actually realize that they need to take steps to protect a trusted device, not only in terms of physical security, but in terms of hampering unauthorized access.
David Harley CITP FBCS CISSP
Mac Virus/Small Blue-Green World
ESET Senior Research Fellow