Their analogy is from the perspective of an authorized user complaining about inconvenience, completely ignoring the things I was addressing (their statement that 2fa provides no benefit)
they said it provides no benefit to them…
and i get it - for some things, maybe you don’t need “all the security” … just “enough” of it.
for example; i might not need any lock on my laundry room door, i might choose a privacy lock on my toilet room door (no key required to unlock), but i will fit an additional a deadlock on the front door. each has a level of security that i deem to be appropriate.
they asserted their opinion about MFA as it pertained to them, not in general.
I’m not talking about appropriate security posture for a given individual though. I’m speaking specifically to their claim that it has provided “no benefit”, and that is a claim they cannot even prove. Whether the benefit is negligible, because the account(s) are unimportant to them, or massive, because they are dealing with financial institutions, is completely irrelevant to the veracity of the statement.
I find this line of argument especially ridiculous considering that they are apparently using MFA enough for it to be worth commenting about the nuisance. So either they are using it a lot, in many places, and definitely can’t back up a “no benefit” claim, or they’re using it very little and/or only for unimportant accounts, at which point their claim is saber rattling at best, and misleading to others at worst.
I’m a security professional also, i don’t see the issue with their analogy?
Their analogy is from the perspective of an authorized user complaining about inconvenience, completely ignoring the things I was addressing (their statement that 2fa provides no benefit)
they said it provides no benefit to them… and i get it - for some things, maybe you don’t need “all the security” … just “enough” of it. for example; i might not need any lock on my laundry room door, i might choose a privacy lock on my toilet room door (no key required to unlock), but i will fit an additional a deadlock on the front door. each has a level of security that i deem to be appropriate. they asserted their opinion about MFA as it pertained to them, not in general.
I’m not talking about appropriate security posture for a given individual though. I’m speaking specifically to their claim that it has provided “no benefit”, and that is a claim they cannot even prove. Whether the benefit is negligible, because the account(s) are unimportant to them, or massive, because they are dealing with financial institutions, is completely irrelevant to the veracity of the statement.
I find this line of argument especially ridiculous considering that they are apparently using MFA enough for it to be worth commenting about the nuisance. So either they are using it a lot, in many places, and definitely can’t back up a “no benefit” claim, or they’re using it very little and/or only for unimportant accounts, at which point their claim is saber rattling at best, and misleading to others at worst.
And I’m the queen of France.