Passwords alone won't be enough to get onto America Online (AOL) under a new optional log-on service that makes AOL the first major US online business to offer customers a second layer of security.
The so-called two-factor authentication scheme unveiled yesterday will cost US$1.95 a month in addition to a one-time US$9.95 fee. It is initially targeted at small businesses, victims of identity theft and individuals who pay a lot of bills and conduct other financial transactions through their AOL accounts.
PHOTO: AP
Subscribers get a matchbook-size device from RSA Security Inc displaying a six-digit code that changes every minute. The code is necessary to log on, so a scammer who guesses or steals a password cannot access the account without the device in hand.
Two-factor authentication -- whether through the RSA device, biometrics or cards printed with rotating lists of passwords -- is common in Scandinavia, Brazil, Singapore and selected countries. In the US, its use is largely limited to employees accessing office networks remotely, or people with high-value financial portfolios.
AOL spokesman Andrew Weinstein said the time was ripe to offer it as subscribers move more of their sensitive personal, business and financial information online.
The offering also comes as scammers increasingly find ways to trick subscribers into giving their passwords by sending e-mail disguised as legitimate information requests.
And with so many sites now requiring passwords, many Internet users have become careless: They create easy-to-remember passwords that tend to be easy to guess -- or they write them down on sticky notes and post them at their computers.
By requiring a second, rotating password, "you don't have to remember complicated passwords to still have good security," said Scott Schnell, a senior vice president at RSA Security.
The second password will be required for checking e-mail and accessing services tied to the AOL account, including calendars, stock portfolios and AOL's Bill Pay.
It won't protect services offered by third parties on the open Internet outside AOL's firewalls, except in cases where their statements and other sensitive information are sent to the AOL e-mail account. Nor is the second password needed to use AOL Instant Messenger.
Gartner analyst Avivah Litan believes a "very narrow set of consumers" -- perhaps 5 percent to 15 percent of AOL's 30 million subscribers -- would sign up, but "you have to start somewhere."
She said AOL's offering likely would prompt other Internet service providers and banks to consider such systems more seriously, though the prevailing belief these days is that customers will find them difficult to use.
Just this summer, HSBC Bank USA began requiring a second password to access its bill-payment services.
That password is entered using an onscreen keypad to thwart snoops who secretly install software that records keystrokes as they are typed on a regular keyboard.
Unlike AOL's service, though, neither password automatically changes, nor is there a charge.
RETHINK? The defense ministry and Navy Command Headquarters could take over the indigenous submarine project and change its production timeline, a source said Admiral Huang Shu-kuang’s (黃曙光) resignation as head of the Indigenous Submarine Program and as a member of the National Security Council could affect the production of submarines, a source said yesterday. Huang in a statement last night said he had decided to resign due to national security concerns while expressing the hope that it would put a stop to political wrangling that only undermines the advancement of the nation’s defense capabilities. Taiwan People’s Party Legislator Vivian Huang (黃珊珊) yesterday said that the admiral, her older brother, felt it was time for him to step down and that he had completed what he
Taiwan has experienced its most significant improvement in the QS World University Rankings by Subject, data provided on Sunday by international higher education analyst Quacquarelli Symonds (QS) showed. Compared with last year’s edition of the rankings, which measure academic excellence and influence, Taiwanese universities made great improvements in the H Index metric, which evaluates research productivity and its impact, with a notable 30 percent increase overall, QS said. Taiwanese universities also made notable progress in the Citations per Paper metric, which measures the impact of research, achieving a 13 percent increase. Taiwanese universities gained 10 percent in Academic Reputation, but declined 18 percent
CHINA REACTS: The patrol and reconnaissance plane ‘transited the Taiwan Strait in international airspace,’ the 7th Fleet said, while Taipei said it saw nothing unusual The US 7th Fleet yesterday said that a US Navy P-8A Poseidon flew through the Taiwan Strait, a day after US and Chinese defense heads held their first talks since November 2022 in an effort to reduce regional tensions. The patrol and reconnaissance plane “transited the Taiwan Strait in international airspace,” the 7th Fleet said in a news release. “By operating within the Taiwan Strait in accordance with international law, the United States upholds the navigational rights and freedoms of all nations.” In a separate statement, the Ministry of National Defense said that it monitored nearby waters and airspace as the aircraft
UNDER DISCUSSION: The combatant command would integrate fast attack boat and anti-ship missile groups to defend waters closest to the coastline, a source said The military could establish a new combatant command as early as 2026, which would be tasked with defending Taiwan’s territorial waters 24 nautical miles (44.4km) from the nation’s coastline, a source familiar with the matter said yesterday. The new command, which would fall under the Naval Command Headquarters, would be led by a vice admiral and integrate existing fast attack boat and anti-ship missile groups, along with the Naval Maritime Surveillance and Reconnaissance Command, said the source, who asked to remain anonymous. It could be launched by 2026, but details are being discussed and no final timetable has been announced, the source