Leave a legacy.

2FA

By: maithilicharan | 08-12-2017 18:18

Please provide Two Factor authentication for giffgaff.com login. Simple username/password authentication is no longer safe.

-

Comments

by: erisds
on: 10-04-2019 13:21

I keep being told by Giffgaff support that I have to comment here if I want to be heard, so here I am.

It is absolutely imperative that Giffgaff adds second or multi-factor authentication on their online accounts immediately. There are now at least 7 ideas that cover this:

https://labs.giffgaff.com/idea/16713916/2-factor-authentication

https://labs.giffgaff.com/idea/16712158/allow-users-to-secure-their-accounts-with-2-factor-authentication-2fa

https://labs.giffgaff.com/idea/16701487/u2f-to-protect-personal-data-on-my-giffgaff-with-2-step-2-factor-authentication-option-for-my-giffgaff-logins

https://labs.giffgaff.com/idea/16712363/require-2-factor-authentication-to-sign-up-for-payforit-texts

https://labs.giffgaff.com/idea/16707920

https://labs.giffgaff.com/idea/16703325

Many of these are over 4 years old. It's very clear that no one reads or moderates this board.

That's fine - it's up to you to choose whether to moderate the board, but if you're not going then your agents need to stop telling people to raise ideas for things that have been open for 4 years already and be honest about the fact that no one cares what's written here.

by: bertiebat
on: 11-04-2019 01:07

Very well said. Unfortunately you are correct in every way which is a crying shame as it used to my favourite board but I was driven away because of everything you have identified.

by: various_mm
on: 28-10-2019 19:16

i would fund this very helpful and having an additional layer of sucurity would be welcome

Edited
by: peterg92
on: 11-03-2019 20:33

Supported

by: bertiebat
on: 12-03-2019 19:14

What changed your mind since your previous unsupportive comment on this idea?

by: c55amg2005
on: 26-04-2018 18:11

You've got my vote.

by: adamtheant
on: 20-03-2018 14:59

I'm happy with top security just not this one soz

by: ataraxia
on: 29-12-2017 20:36

I've been involved in introducing 2FA for banking - it was an extensive coding and testing project! Why do you see it as a priority to implement here? Are you thinking from stored payment details perspective or more generally due to data privacy? What 2nd factor do you propose - digital or physical? Do you know of comparable firms that do it?

by: ijustcantdoit
on: 28-12-2017 16:12

Can you elaborate on what you have in mind ?

by: mcilwraith
on: 27-12-2017 19:16

my opinion...not needed

by: starkey93
on: 27-12-2017 17:14

@maitgilicharan


I may I first add there are three sentences in your pitch....you simply have not let yourself explain enaugh about what it is you would do if you could change this ??

I fully understand secrurity is paramount but these measures are all ready in place? You have not piched an alternative idea that giffgaff could use to make this safer........it is simply like me going on giffgaff labs and saying ""giffgaff needs to be better cus I dnt like them"" but then not elaborating on why and how I would change this and turn it around.

I am all for secrurity but your pitch was so poor that unfortunately at this time I cannot support your idea.

Good luck

by: various_mm
on: 28-10-2019 19:20

what? seriously granted for those that dont know what 2FA is it might be difficult to comprehend the idea but 2FA has been used by the likes of microsoft hotmail/ outlook and other like Google for a very long time. the way it works is at the moment would need your user name and password to log into your account. this means anyone who has your password and username. phone number can get into your account 2FA would add another layer of security. it would send a verification code to a phone number/ email and you would need to type that in as well as the user name and password. this means that even if someone has your user name and password they will not be able to log into your account and therefore is a useful additional security layer

by: bertiebat
on: 27-12-2017 14:50

What additional authentication are you suggesting?

Personally I think the existing methods are sufficient and making access overly complicated can put people off. Remember no card or banking details are readable.