Techly NewsGet the app

Get the latest tech news

Why are banks still getting authentication so wrong?


While recently traveling to the U.S., I was completely locked out of my TD Personal Banking account. TD relies heavily on SMS-based two-factor authenticat...

In an effort to move beyond SMS, some banks, TD included, have rolled out their own proprietary OTP apps rather than adopting the open TOTP standard (RFC 6238). Authentication flows too often feel like they were designed in a vacuum, engineered by siloed security teams and product managers with no regard users. The refusal to support basic standards like passkeys or TOTP isn’t just an inconvenience, it’s a security liability that actively harms users and undermines trust.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of authentication

authentication

Photo of banks

banks

Related news:

News photo

Pay day banking outages hit 1.2m people, banks reveal

News photo

Kraken Launches Embed: Plug-and-Play Crypto Trading for Banks and FinTechs

News photo

European Stocks Rise as Banks Rally; LVMH Miss Hits Luxury

« Y Combinator says Google is a ‘monopolist’ that has ‘stunted’ the startup ecosystem
AWS enters into ‘strategic partnership’ with Saudi Arabia-backed Humain »