DO Ideas 2

Strike a balance between security and usability

Security is important, no doubt, but the de facto two-factor authentication that seems to have been enforced for a few months is a pain, as every single time I log out I must wait for a verification code by email when I log back in. Support tells me that this is because "in some cases devices will not properly report their DeviceID" (whatever that is) and I "can try different browsers and OS's", but it happens in the latest versions of both Firefox and Chromium, and I'm not formatting my hard drive to install a new OS or buying a second machine just to log into DO.

There's got to be a better way that doesn't sacrifice usability for security. I don't run into this problem anywhere else.

This is the email I get every time I want to log in: "Please verify that it's you[.] Your sign in attempt seems a little different than usual. ..."

  • Craig
  • Sep 11 2018
  • Shipped
  • Sep 11, 2018

    Admin Response

    Thank you for the feedback. Maintaining the balance between security and usability is challenging, and we're constantly trying to improve on both fronts. We recently made updates to the login experience that should reduce the frequency you have this experience. That said, we highly recommend that, for your own security, you turn on 2FA using an authenticator application in the Security section of the Control Panel. Thank you for the feedback!
  • Attach files