E-mail List Archives
Re: Accessible authentication and "transcription"
From: Patrick H. Lauke
Date: Oct 8, 2023 1:26PM
- Next message: Peter Bossley: "Re: Accessible authentication and "transcription""
- Previous message: Damon van Vessem: "Accessible authentication and "transcription""
- Next message in Thread: Peter Bossley: "Re: Accessible authentication and "transcription""
- Previous message in Thread: Damon van Vessem: "Accessible authentication and "transcription""
- View all messages in this Thread
On 08/10/2023 20:19, Damon van Vessem wrote:
> Greetings,
>
> I have a question about 3.3.8 Accessible Authentication (AA), specifically
> about 'transcribingâ information. Let's say a user is trying to sign in on
> their laptop and a 2-factor mechanism requires them to use one-time code
> received/generated on their phone. Is this an acceptable solution, since it
> requires them to type (transcribe?) the code on their laptop?
If they can only transcribe it manually, then that fails. There is some
gray area around the idea that they can potentially copy it on device,
then transfer it to their machine (for instance, emailing it over, or
with OS integrations that let you have a shared clipboard between devices).
P
--
Patrick H. Lauke
https://www.splintered.co.uk/ | https://github.com/patrickhlauke
https://flickr.com/photos/redux/ | https://www.deviantart.com/redux
https://mastodon.social/@patrick_h_lauke | skype: patrick_h_lauke
- Next message: Peter Bossley: "Re: Accessible authentication and "transcription""
- Previous message: Damon van Vessem: "Accessible authentication and "transcription""
- Next message in Thread: Peter Bossley: "Re: Accessible authentication and "transcription""
- Previous message in Thread: Damon van Vessem: "Accessible authentication and "transcription""
- View all messages in this Thread