Identity Verification / Authentication - Device Dependent.

LinW13

I do not have a Smartphone as of yet. And I really don't fancy relying on one to do financial transactions.
I do have a mobile and I'm happy to receive One-Time-Passwords (OTPs) on it. If the phone packed up, I could transfer the SIM to another device so I could carry on dealing with my finances. In other words, it is not device dependent.

I have had experience of Card Readers, such as the type handed out by Natwest, etc. These are interesting, as the same device can be used for several institutions dependent on the debit/credit card inserted. One could easily obtain a spare and not have to rely on the one device. However, it does need the specific bank card. Funnily enough I keep those about my person anyway so I'm not too worried about losing access.

What we seem to have now are Digipasses or Secure Keys or some such doohickey that are institution specific. And frankly, I do not want to carry a load of fragile, unreliable pieces of tech that are durn hard to replace. I do not want to risk losing access. You know what it is like - the minute you need to get hold of your dosh is the very minute you realise the doohickey has packed up or is not where you left it. Sods Law.

I used to be able to access my HMRC income tax account as I had been verified by Experian. For whatever reason, Experian is no longer involved. The two companies that can do it now are Digidentity and The Post Office. I have tried both and at the very end of the process they want me to use a smartphone to upload a photo to complete the verification. No other options are given. So I remain an innocent honest citizen shut out by my own Government - the one I pay my taxes to BTW.

Online security is important. I would not like my meagre savings to be plundered.

No process is foolproof. If they wanted a fingerprint scan or eyeball scan, the bad guys would find a way round it. As we speak, I'm sure that even the cleverest doohickeys are being cloned, etc. There is no such thing as reliable security. 

In the meantime, I fancy transferring my Cash ISA to Cynergy as their rate is good at the moment. However, I either have to download an app or apply for a Digipass device. Therefore I will look elsewhere.

PLEASE, do not suggest I give in and get a smartphone. Do you realise they cost a lot of money to run? Do you realise how unreliable the networks are? Do you realise how easy they are to hack? I have enough to be paranoid about without adding to my burden.

OK, I am not being totally serious here. However, it is no fun being excluded.

Stay safe everybody and be well.
Lin

ColdIron

I suggest you give in and get a smartphone Mine costs me £6 per month to run, about the price of 2 coffees or a kebab, and smartphones are more difficult to 'hack' than a laptop

jimjames

A Smartphone is not expensive to run. You don't even need a SIM in it if you have wifi at home.

But there are plenty of options that don't require one. If people keep getting scammed then online security measures will continue to increase.

LinW13

ColdIron said:

I suggest you give in and get a smartphone Mine costs me £6 per month to run, about the price of 2 coffees or a kebab, and smartphones are more difficult to 'hack' than a laptop

LOL Coldiron.

£72 per year is more than the additional interest I would earn by switching to Cynergy. However, those kebabs sound inviting.

Lin

LinW13

jimjames said:

A Smartphone is not expensive to run. You don't even need a SIM in it if you have wifi at home.

But there are plenty of options that don't require one. If people keep getting scammed then online security measures will continue to increase.

It is not the cost that really worries, it is the device dependence. So now we are talking about getting involved with the cloud. Yea gods, my paranoia has just peaked! Bring me my quill pen and abacus immediately! LOL.

LHW99

Not sure why you need to be re-verified by HMRC - I have been verified for quite a few years now, using the Governent gateway.

I don't have a smartphone, so don't use apps. I also don't have contactless, so use a pin to pay by card.

Anything I want to do in terms of pay bills check balances make transfers I do online at home either by OTP or using a card reader or digital key - those don't leave the house, I don't need them to pay or get cash if i want it.

I therefore can't have an account with some of the newer banks, but there are plenty of older institutions happy to let me open an account without a smartphone, although most will offer an App.

So I'm not quite sure what the problem is just now. Undoubtedly we will be pushed more and more that way, but IMO the country is nowhere near that point yet.

colsten

LinW13 said:

PLEASE, do not suggest I give in and get a smartphone. Do you realise they cost a lot of money to run? Do you realise how unreliable the networks are? Do you realise how easy they are to hack? I have enough to be paranoid about without adding to my burden.

Do you realise that you, as a non-smartphone user, preaching to smartphone users you won't be taken entirely seriously? I know you don't want to hear this but your best option would be to replace your prejudice with a smartphone.

naedanger

LinW13 said:

jimjames said:

A Smartphone is not expensive to run. You don't even need a SIM in it if you have wifi at home.

But there are plenty of options that don't require one. If people keep getting scammed then online security measures will continue to increase.

It is not the cost that really worries, it is the device dependence.

But it is the device dependence that is the extra element of security.

Actually I have some sympathy to your plight. Some companies get it right (security without too much inconvenience) and others seem inconvenient and less secure.

eskbanker

With a few exceptions such as app-only banks, there is no need for anyone to have a smartphone to make financial transactions.

However, there are security obligations for those who wish to transact online, so anyone wishing to take advantage of the benefits of online banking, or the ability to make online purchases, needs to accept the new reality of two-factor authentication, which isn't going to go away, so no point in being nostalgic for how it used to be before security was tightened.

Nothing stopping people from handling their finances in more traditional ways though, i.e. face to face or phone transactions, if they choose not to follow the technology.  As above, some providers still permit SMS-based OTPs for now, but the lack of security of this method is likely to see a shift away from it....

LinW13

colsten said:

LinW13 said:

PLEASE, do not suggest I give in and get a smartphone. Do you realise they cost a lot of money to run? Do you realise how unreliable the networks are? Do you realise how easy they are to hack? I have enough to be paranoid about without adding to my burden.

Do you realise that you, as a non-smartphone user, preaching to smartphone users you won't be taken entirely seriously? I know you don't want to hear this but your best option would be to replace your prejudice with a smartphone.

Come now Sirrah, such harsh words - More Pride than Prejudice methinks!

You are right, I didn't realise how silly and ineffectual you would find me. LOL.
To quote my own words.... I am not being totally serious here.

Bottom line - Please don't let the nasty machines take away my freedom.
"I am a man not a number! "

Prism

As time goes on and the majority of people have smartphones then OTPs will be phased out as although they are better than passwords they are also not as secure as an app or dedicated device.