Allow Email as 2FA Method
Ring's new 2FA strategy is EXTREMELY DANGEROUS in that it puts people's lives and property at risk for seemingly no legitimate reason. Apparently, Ring is requiring the use of 2FA, but eliminating Email as a 2FA option (without providing any explanation to users). Email may not be the most secure 2FA option, but it may be a far better option for many users than the two (undesirable) options Ring is attempting to force on users. For example, anyone who knows anything about privacy/security knows: * It's a bad idea to provide a mobile phone number to a company just because they insist you do so * It's well documented that SMS text messages should NOT be used for 2FA purposes * It's dangerous to install software on a device just because someone wants you to do so Unfortunately, this is simply the latest example of a seriously anti-consumer decision by Ring. Although it may be good for Ring, it is definitely not good for its users. In fact Ring will, by definition, cause SERIOUS HARM to users if it eliminates Email as a 2FA option. If Ring wants to require MFA, Ring should: * Expand the number of MFA options available (to four or more) * Explain all the pros/cons of each method, so users can make informed choices * Allow users to register multiple MFA methods If Ring wants to show its utter contempt for its customers, it can continue to threaten to cut off access to hardware/services that CUSTOMERS HAVE ALREADY PAID FOR. Doing so, of course, would put people's lives and property at SERIOUS RISK, for no legitimate reason (other than corporate greed). Please allow Email to be used as a 2FA method. It's the right thing to do. Thank you.
802 •
0 •
2 •
31-07-2021 06:23:25
Responses (3)
- X
I 100% agree with you, that it is a stupid idea to remove the option of having email 2FA completely. I work at a government facility. I am not allowed to bring my mobile phone into the facility at all. I work 12 hour shifts. Removing the email 2FA option, means I will no longer have access to view my ring devices when I am away from home!! Which defeats the whole purpose of having cameras to monitor what is happening.
•0
06-08-2021 01:01:19
•
- M
Hey neighbors. Over the past year we have been making various efforts to ensure our neighbor’s safety when using their Ring products and services. In an effort to stay in line with industry’s best practices, Ring is phasing out email as a method of account verification as a part of [Two-Step Verification](https://support.ring.com/hc/en-us/articles/360052326012-Changing-your-method-of-receiving-a-verification-code-from-email-to-text-message), and the options that neighbors have now to log in are the SMS or an Authenticator App. If you are unable to use SMS verification, we recommend [using an Authenticator App](https://support.ring.com/hc/en-us/articles/360061508852-How-to-Download-and-Use-an-Authenticator-App-), which can be installed on a mobile device, PC, or laptop.
•0
12-08-2021 06:46:12
•
Didn't find an answer ?
Log in or create your Ring account to post a question and join in the on the conversation.
Community Resources
©2024 Ring LLC or its affiliates
actualsecurityknower
Completely agree. Removing email auth is part of a disturbing trend to force users into revealing their phone numbers and downloading apps we don't actually need. It's also not a valid security decision, because email is a perfectly safe method of authentication for those of us with government or top-security email providers. My guess is a product development manager with just enough knowledge of security to pass an opsec 101 exam thought it was a 200 IQ idea.
1
31-07-2021 06:09:43
•