Most people are not responsible enough to have a key-based authentication.

in #idea3 years ago

The issue came to me while doing the monthly recover of a Skype password for an old lady who [very] often forgets. Most people seems to have this issue with their passwords.

For that reason I believe this might be a problem with Hive's idea of having the account permanently lost in case of lost password.

In this case an idea I had regarding this issue is to have a service that creates new accounts the same way they are created in other social media: allowing the users to choose their own passwords and allowing them to recover such password in case they lose it.

How would this be possible?

When creating an account, generates just an Owner private key from random data and use it to add Owner authority to the account of the service later.

Then use the user's own created password to create the Active, Posting and Memo keys.

The user can be incentivized to create an additional password for fund management security, which would be used to generate just the Active key separated from the Posting and Memo keys.

In the end the user would see an Account Creation Form asking for a Login name(obvious), a password and an additional password being recommended to protect funds.

If the user sets two passwords for security, then one is used to create Posting and Memo keys, with the "funds protection password" being used to create just the Active key. If the user sets just one password, then non-Owner keys would all be created by that.

In case the user forgets it's password, it can always request the service to create new ones as the service would have Owner authority under that account.

BUT (and that is a pretty big BUT)

The service needs to strongly secure it's own Owner key as it gives it such authority over all those other accounts.

The service MUST be trustworthy. But on the other hand those people who easily forget passwords trust anyone to ask for a new one.

This was just an idea I was drifting upon lately. I believe an adaptation of such idea considering other issues.

My point is that it would allow the user to login in many services with it's password as it would be used to get the non-Owner keys.

If I say anything that might sound foolish, sorry for that. I would like to have feedback regardless. Thank you for reading.

If you have a spare vote...

Vote for me as your Hive Witness


#hive #suggestion
3 years ago in #idea by
$2.66
  • Past Payouts $2.66
  • - Author $1.34
  • - Curators $1.32
27 votes
Reply 1
Sort:  
  • Trending
    • [-]
     3 years ago  

    Yay! 🤗
    Your post has been boosted with Ecency Points.
    Continue earning Points just by using https://ecency.com, every action is rewarded (being online, posting, commenting, reblog, vote and more).

    Support Ecency, check our proposal:
    Ecency: https://ecency.com/proposals/141
    Hivesigner: Vote for Proposal

    $0.00
      Reply