Software authenticator announced

A software based authenticator for mobile devices has been announced. Good god, that is an interesting idea!

software_authI think the employee who thought this up, or even the team who wanted it should be taken out to lunch. Somewhere nice too, with white tablecloth. This little app has the potential to help every one of the millions of Blizzard clients, and if done well will help change our expectation of online services.

  • Can you reverse engineer a iPhone/mobile/whatever app? Probably, but how hard. Does the delivery to so many platforms make it easier to get security flaws, as there are so many difefrent platforms?
  • Connection only needed the first time it runs, to setup the account link. Obvious, but important.
  • I wonder if I can put in the serial of my physical keychain, and then use my iPhone for authentication. This way I have two devices linking to my account. Why? So that if my iPhone crashes, or I drop my keychain into the toilet by accident I can still play wow.
  • It won’t be free (nothing good is) but hopefully its no more expensive that the keychain model.

This is also a great sign of what online games, apps, links, and services all over the place should be doing if the proport to have “high security”. 10/10, but it remians to be seen if its safe. The early adopters will be taking a few risks, so I’ll stay with the keychain till after the first few rounds of release.

ps. I wonder if the Apple App Store will give the Devs grief to get the app approved. Afterall you can talk about rude things while playing the game….

Advertisements

5 thoughts on “Software authenticator announced

  1. I had a quick look at the site, and the only concern I had were the words:

    Download for US/EU carriers (Coming Soon)

    Carriers…. what does this mean for Oz…?

    Otherwise… my iPhone is drooling already…. waiting… waiting… how long can it take?

  2. I’m not sure why the carrier would make a difference. It should be plausible to have this as a web service that needs the credentials of the owner checked once, then forever storing a value. You’re spot on though – the statement is a worry, and my iPhone is keen.

    Unless the carrier is also used in identification of the user to the authentication service, in which case that seems to be a strange choice. You’d change provider and not be able to login to wow.

  3. I grabbed this from the iTunes store today, but yet to setup as I’m trying to find out if making my Auth + WoW account linked to battleNet will make it less secure.

  4. Pingback: Authenticate iPhone or Keyring, not both. « TyphoonAndrew’s - Eye of the Storm

Comments are closed.