Following on from What happens if someone uses a keylogger to hijack someone’s account…
What recourse do I have if my account credentials somehow get leaked or compromised? This might be my private key to my account or it may be my pin/user/password for the launcher.
Does account migration exist? Accidents do happen, and it would be good to have some way to change the account to something fresh if a mistake is made.
In a word? No. You’re up the creek. There is discussion of creating a system of having trusted friends hold certain personal information that could then be used to create account retrival options. Or one could set up a deadman switch to cede their account or assets to various parties if one lost access to the account. But if you don’t have any friends outright and it’s a new account? You’re fracked.
The problem is until you log in the network has no way of knowing who you are. There are no central servers on SAFE, there is no password retrival program because in order for that to work there would need to be a central hub to compare your username for example with the password or pin that was being retrieved and the private information that was being submitted in order to retrieve it. However the network never has access to any of this information. Your login credentials all happen client side via self encryption.
Does account migration currently exist? No. Could it exist? Well I suppose one COULD set up an app to copy all data in one account to another account. Though how that would affect PtP I have no idea. Once uploaded I’m not sure one can change the wallet address linked to one a file. But again all this would require you to LOG IN first. There would be no central body to appeal to in order to get your account back or migrate it from x to y.
At this time I do not think there is any way. The network only knows you by your credentials.
Account migration. No mention of it as far as I know and then all that would be required is to copy over the datamaps for your data, deleting the maps from the old account and associate your wallet address to the new account. And the harder bit is coping all SD objects. Likely an APP could do most of that.
But having said that if someone knows your credentials then its unlikely they would leave your coins alone so associating the wallet address with another account seems futile. And they have the data maps copied if that is what they were after.
So migration seems to be possible with an APP that you first run on the old account which sends the datamaps and keys to the new account, then run the APP on the new account to store the datamaps and keys in the new account. Then delete all the stuff in the old account. (As we know this does not touch the actual immutable data)
The only issue with migration would be the structured data where authenticity is validated by your account key to APPs and others. This would require more than a simple copy of SDs to new account, but somehow informing securely others/APPs that you have a new public key.
And I think this is the way it should be.
No third party account recovery entities to interfere with SAFE
Yeah here I go again @janitor
There should not be any need for account recovery, if we have 2FA it doesn’t matter if someone has your credentials. If they don’t have your phone, the second factor to login, they’re stuck.
I don’t want to sound pessimistic about security, but I guess when the forum is being flooded with “account got hacked” complaints that this will be taken serious. Just because the SAFE Network is secure doesn’t mean that the OS people are running are secure. The media will love to say “Your SAFE Network account can be hacked” and this will probably let people believe the SAFE Network is insecure.
But now I do wonder, what if an attacker has your credentials and logs in within the minute that you log in, because they got a keylogger on your computer? Does the SAFE Network allow you to login twice or more times with the same creds, from different computers? In my current settings I can’t test it, but it would help if we know.
Can somebody try to log in with my credentials on their computer?
Pin: 2006
keyword: mon3y1996
password: safec0in2016
Check your private data lol
At first sight it might seem useful, if you can do that. The problem is even if we had 2FA in place to protect people their account, an attacker can just still login with their creds through a keylogger. Gmail checks if your already logged in and doesn’t log you in twice as far as I know.
Maybe an even bigger problem is that I can just upload, download stuff from your private data, which is suppose to be PRIVATE (I don’t mean to 
)
They could also delete, edit and do whatever they want
Meh not bad per se. I can think of a lot of practical and useful applications for doing that but I can also see the security vunerability. Maybe there should be a user setting to allow/disallow that or something. Leave it up to the user to risk it. If you’re using your SAFE account for a lot of file transfers from multiple locations from multiple computers that might be useful. If you’re more concerned about security it might not be.
Or you could do what Steam does have have each device ask permission when it registers with your account. Every time a device wants to use your steam account it needs to get verified. I’m not sure how that would work exactly but perhaps with some two factor authentification method that might work. Keep in mind not everyone has a smartphone.
At first sight it might seem useful, if you can do that. The problem is even if we had 2FA in place to protect people their account, an attacker can just still login with their creds through a keylogger. Gmail checks if your already logged in and doesn’t log you in twice as far as I know. This would also prevent an attacker from being able to login. Let’s say that you would want to log in again on another computer, you can use your 2FA to login, this would mean that the attacker would need to also hack that second computer.
Maybe an even bigger problem is that I can just upload, download stuff from your private data, which is suppose to be PRIVATE (I don’t mean to )
They could also delete, edit and do whatever they want.
Maybe it’s better that I make an op under security for this one, because it’s really a problem
You can log in from multiple browser/devices to the same account at the same time, I am using this daily. A link at the bottom of gmail lists the last IPs that logged in.
But I assume that I can’t log in with your creds from a different location?
Why not make a test google account and test that out?
I can’t remember the settings anymore if I had 2FA enable on my Gmail yes or no. I tried to login on another location and I couldn’t login, because Gmail detected that it wasn’t the ip I usually use.
@blindsite2k I think your answer is overly pessimistic though you do mention some likely options, which is also potentially confusing.
@neo while not in the plan, I believe that account migration is something David has talked about being done early on - so changing passwords & pin will be I believe be possible.
Account recovery has also been discussed by David so I’m fairly confident this will also be addressed - such as by sharing keys for multi sig control should you lose access.
I think 2FA is harder to build in, so would be an add-on / optional extra rather than a core feature, but will I’m sure also be available.
For private datamaps, isn’t 2FA a matter of encrypting the datamap twice with keys from different accounts? For SafeCoins and other SD tokens, it’s having multiple owners.
For private datamaps, isn’t 2FA a matter of encrypting the datamap twice with keys from different accounts? For SafeCoins and other SD tokens, it’s having multiple owners.
In not sure that amounts to two factor. At least not how I think of it, but it is certainly something that might be used.
I mean, let’s say you register two accounts, one for your laptop/desktop/tablet, one for your mobile phone. And if you then use an app that makes sure that each private datamap created/downloaded on your laptop/desktop/tablet is also sent (using messaging) to the mobile phone account for the additional encryption layer, then you always need to login to both to handle any private data.
IMO having no account recovery options will bring bad reviews and keep a lot of potential from Safenet. This is potentially devastatiing under certain circumstances. Making the process to recover an account most difficult and time consuming would be in order and having a high profile campaign on how to properly create and store credentials would also be smart. Microsoft Azure has a very comprehensive MFA. Not sure if anyone has looked at any MFA vendors but I have had dealings with Authy and they are always looking for new opportunities and would likely be very interested in chatting with senior team members, reviewing the criteria and offering ideas/solutions. It cant hurt to have Authy (a Twilio Co.) or any MFA vendor look at Safenet from just a marketing perspective.
I think the proper answer to the attack @mav talks about is an additional layer of encryption for each application. I don´t see how migrating would be helpful (or possible) because you wouldn´t move any data, you will just port the keys (if I got it right?). Since it is impossible to delete data, you´d have to make sure to upload only sensitive data to the agree you can ensure you are not compromised.
I don´t see how a “security switch” would work, but IF there was a way to use it you could
But yeah, how should such a security switch work? I personally think, the additional security has to be provided by additional application while the core network remains as is.