plsak
July 1, 2022, 2:58pm
83
You’re right, this discussion started quite a long time ago, my addition:
Hi, I wanted to start a topic Enhance security on identity.ic0.app but found this one and as it would be duplicated will just comment here.
Motivation: Users are supposed to properly secure their auth devices but at the same time are supposed to use them several times per day to access dApps, which are mutually exclusive requirements.
I agree with
This will allow owner of the Anchor to secure the passphrase and eventually use it as last resort recovery
I shared idea for had/dp type…
Also note for the
=> purpose of hidden is improved protection - even if account is compromised (one of devices stolen) or there is a physical attack (happens for BTC), the attacker won’t be able to request all devices as he/she won’t ever see them - never will be sure that got all, which might discourage a major number of possible thiefs.
I just feel that deliberation about security threat for investors takes too long, also note that it’s scary for possible new investors (some expressed this worry to me).
5 Likes