• rollingflower@lemmy.kde.social
    link
    fedilink
    arrow-up
    5
    ·
    8 months ago

    Not for authentication. No idea if this is not a thing, but banks here in Germany all have their weird proprietary TOTP app that checks if your device is rooted or now even if it is a “Google certified OS”.

    You can use some weird hardware device instead with the obvious drawbacks.

    • SmoothLiquidation@lemmy.world
      link
      fedilink
      English
      arrow-up
      4
      ·
      8 months ago

      My favorite thing is when banks don’t allow passwords that have spaces in them or are more than 12 characters long.

      Honestly there should be a standard of what security means, like how passwords are stored and how TOTP is implemented, and if a bank doesn’t implement it then THEY are responsible for any “identity theft” that happens on their site, not the users.