FamilySearch login security measures
Does FamilySearch offer two-factor authentication (2FA)? I currently utilize 2FA to access FamilySearch through my church account. However, I've recently started logging in directly through FamilySearch's login page, where I'm only prompted for my username and password without any additional verification. Other secure platforms typically verify my identity via their mobile app upon logging in through a web browser, especially during the initial login. Certain websites also utilize browser cookies to recognize my device from previous 2FA sessions. How does FamilySearch handle these security measures?
Answers
-
I don't see 2FA as an important security factor as long as:
(1) Another person can continue working under the username of a person who hasn't logged off from a PC situated in a public place.
(2) FamilySearch continues to allow users to have multiple usernames.
0 -
What is there in your FS account that would warrant bank-vault-style security theater?
I hope and pray that FS never, ever implements multi-device hassleification. It is evil incarnate and does nothing whatsoever for actual security. It just adds yet another company or organization to the list of people who have data about your devices and contact methods.
2 -
Thanks for sharing your opinions myregarding 2FA question. I am not trying to impose this on you. I am trying to have the option of protecting myself from someone hijacking my account. Why do I want this? My wife recently had an account hijacked and forvever has lost all access to over 2000 documents, her contacts, passwords, email, backups, etc. - decades of work. The FamilySearch equivalent of that is having someone hijack your account, and do many things like find things about you they need to open a credit card account in your name, add fake memories, wreak havoc with your tree, etc. and reset your password so that are no longer able to login to your account. Unfortunately, that’s the world we live in. That’s why I asked the question and I’m still hoping someone who knows can answer it. Thanks.
1 -
Given that this is a collaborative site - meant for sharing our research with others - I'm not sure what anyone would need to protect. That is - if you don't want to share it, don't put it online. If you put it online, then you're sharing it, not losing it.
1 -
One important reason why FamilySearch allows sign in via Google, Facebook, Apple, or Church Account, is that all of these provide two-factor authentication. If 2FA is important to you, you are welcome to use one of those options.
6 -
The first part of any cyber attack is reconnaissance. If people can find information there is no telling what they will do with it. I would like to be able to protect my information and how I would like to do it is through two factor authentication.
0
