12 replies to this topic

[ORIGINAL SteelWolf]

www.vasco.com Is the company that makes authenticators. World of Warcraft uses such authenticators.
With rel money being changed into in game currency i'm not sure how big the potential is for theft. I have not heard of any thing that involves sending people in game mail with money fake or real attached in MWO but i for one would feel better if there was such a service.http://www.vasco.com...n_digipass.aspx Is the product list of authenticators that MWO could resell. Brand the authenticator as MWO and i'd buy 3. One for me and a spair. Another for my kid as i'd start to train him in the game. They also have Server side software to go along with the devices. For some reason after building the post i get hit with the you cant use that extension for images error. So i used paint to rebuild the images and post it as a picture.

Edited by ORIGINAL SteelWolf, 05 August 2012 - 04:38 PM.

[Gendou]

I know there was another thread just like this a few days ago, but I can't be arsed to look it up.

That having been said, Hell Yes.

I love the security of my Blizzard Authenticator, and I wish all of my online games had one.
MWO will be my new 'main' game (after seven years of WOW), so it would be disappointing NOT to have one, to be honest.


Edit:
I lied about not looking it up: here's the other thread.
It's not exactly the same, but I knew I'd seen the issue brought up recently.

Edited by Gendou, 05 August 2012 - 04:42 PM.

[Lightdragon]

NO authenticators just add another annoyingf layer of security that inconvenience players into having to change their password every few months,

[Bansheedragon75]

Just out of curiosity, if someone was to steal your account here.
What would they gain from it?
There is no currency transactions between players of any kind, so there would be not reason for any of the RMT sellers to come here and try to sell you ingame currency.
As such there would be very little incentive for anyone to try and steal your account, making the authenticator superfluous.

[Exilyth]

Searching my usual sources for tech info I've come about this article on hack-a-day.com*:
http://hackaday.com/...hardware-token/

If the comments on that article are right, breaking into the authentification server and stealing the seed/private key would invalidate all that fancy hardware.


* hack a day is a website about hardware hacking, e.g. making devices do stuff they're not supposed to and similar shenanigans.

[Tribune]

Dragonlord, on 06 August 2012 - 09:19 AM, said:

Just out of curiosity, if someone was to steal your account here.
What would they gain from it?
There is no currency transactions between players of any kind, so there would be not reason for any of the RMT sellers to come here and try to sell you ingame currency.
As such there would be very little incentive for anyone to try and steal your account, making the authenticator superfluous.

First, not all hackers do so for monetary gains. Many hackers do so because:

-They can.
-To cause havoc.
-Expose security holes and bring them to public eye.

Not to mention some people hack someone they know in real life for personal vendettas (using key loggers, for example). And let's not forget the Sony debacle last year (individual accounts are not the only concern, sometimes server-side hacking is a threat).

As for exchanges taking place within game. We don't know yet what the Developers have in store for us in the future. If there is ever to be any way to send/exchange any thing with other players (whether it be in-game currency, or equipment), that would give an increased reason for someone to hack.

I support the idea of increased login security, but I don't know how much such a hardware key authenicator would cost for the company. But if they do implement such a feature, it would be best to allow it as an "Option" (not make it a requirement). At the very least, I would also like to see the login screen have an added "on-screen keyboard" that can be used to log in, instead of just typing on a keyboard (added security against key-loggers, whether it be from someone in real life, or a virus that made its way to the user's computer). I saw that on another F2P MMO I used to play.

[Shardonis]

Sadly working in the IT Industry for well over 15 years now, one issue we allways have is getting folks to utilize a complexe password schema, as well as changing their passwords on a regular basis.

I think its a great Idea to have Authenticators, but would have to question the economic feasibility in the Free 2 Play market place. Seriously think about it, as there will probably only ever be a handful of die hard players who keep up a premium account, and a certain percentage of players utilizing the ability to purchase virtual goods with real money their business model probably does not include the implementation of this feature at this time.

Additionally if you look up the licensing cost of said feature, via RSA or other Key Fob systems, it would probably bankrupt the company producing this product.

I have allways had a great deal of respect for the Mechwarrior Franchise as they have never sold out to companys like WoTC, Mattel or Hasbro. They have allways been their own entity. To this date they have allways licensed good solid products via diffrent software title producers. But they are not some large company that can afford to toss out Millions of Dollars on Software Development and Server hardware. I say be lucky that we are even getting this product at all.

Just to clarify, I agree with many folks I would love to see a Authenticator. However if people follow proper computer usuage and keep their computers clean of Key Logger's Torjan's and other nasty bits of software by developing safe web browsing habits I think the net would be a more secure place. Remeber 80% of all intrusions are created from the inside of a network due to poor net browsing habits.

Shardonis

[ORIGINAL SteelWolf]

Shardonis, on 06 August 2012 - 08:20 PM, said:

Remeber 80% of all intrusions are created from the inside of a network due to poor net browsing habits.
Shardonis

And your source material for that % is?

[ORIGINAL SteelWolf]

Blizzard Says Battle.Net Has Been Hacked
[color=#4D4D4D]
Posted by samzenpus on Thursday August 09, @07:52PM
from the all-your-password-are-belong-to-us dept.[/color]
[color=#363636]

An anonymous reader writes"Blizzard announced today that its Battle.net service was compromised. The company is urging users to change their login information immediately. Blizzard is stressing that payment information was not compromised. 'The unauthorized access included email addresses associated with Battle.net accounts in all regions, outside of China. Additional information from accounts associated with the North American servers (which generally includes players from North America, Latin America, Australia, New Zealand, and Southeast Asia) was also accessed, including cryptographically scrambled versions of passwords (not actual passwords), the answer to a personal security question, and information relating to Mobile and Dial-In Authenticators. It's important to note that at this time, Blizzard does not believe this information alone is enough to gain access to Battle.net accounts.'"
[/color]



100 of 296 comments loaded twitterfacebook





Bet you wish you had an authenticator now.

[Bansheedragon75]

Actually no.
If they want my Diablo 3 or Wow accounts they can have them, I have no use for them

Edited by Dragonlord, 10 August 2012 - 02:46 PM.

[Exilyth]

Tribune, on 06 August 2012 - 07:51 PM, said:

At the very least, I would also like to see the login screen have an added "on-screen keyboard" that can be used to log in, instead of just typing on a keyboard (added security against key-loggers, whether it be from someone in real life, or a virus that made its way to the user's computer).

At first I though this might be a nice idea, but...
couldn't such an on-screen keyboard be abused too if a keylogger was logging mouseclicks?

Edited by Exilyth, 11 August 2012 - 12:00 PM.

[Bansheedragon75]

Exilyth, on 11 August 2012 - 11:58 AM, said:

At first I though this might be a nice idea, but...
couldn't such an on-screen keyboard be abused too if a keylogger was logging mouseclicks?

Not if you randomize the buttons each time you log in.
Aion does that, where you have to input a 6-8 digit numerical code each time you log a character, and the numbers have random locations each time.

[Lightdragon]

Tribune, on 06 August 2012 - 07:51 PM, said:

First, not all hackers do so for monetary gains. Many hackers do so because:

-They can.
-To cause havoc.
-Expose security holes and bring them to public eye.

Not to mention some people hack someone they know in real life for personal vendettas (using key loggers, for example). And let's not forget the Sony debacle last year (individual accounts are not the only concern, sometimes server-side hacking is a threat).

As for exchanges taking place within game. We don't know yet what the Developers have in store for us in the future. If there is ever to be any way to send/exchange any thing with other players (whether it be in-game currency, or equipment), that would give an increased reason for someone to hack.

I support the idea of increased login security, but I don't know how much such a hardware key authenicator would cost for the company. But if they do implement such a feature, it would be best to allow it as an "Option" (not make it a requirement). At the very least, I would also like to see the login screen have an added "on-screen keyboard" that can be used to log in, instead of just typing on a keyboard (added security against key-loggers, whether it be from someone in real life, or a virus that made its way to the user's computer). I saw that on another F2P MMO I used to play.

i think youre talking about requiem... an interesting idea.. but really annoying