Mailing the story:

US standards lab says SMS is no good for authentication

  • The Register; By Richard Chirgwin (Posted by on CST)
  • Story Type: Security
America's National Institute for Standards and Technology has advised abandonment of SMS-based two-factor authentication. That's the gist of the latest draft of its Digital Authentication Guideline, here. Down in section 5.1.3.2, the document says out-of-band verification using SMS is deprecated and won't appear in future releases of NIST's guidance.
What is your name?

What is your E-Mail address?

What is the email address of the recipient?

Add a special note from yourself?