SwiftOnSecurityDec 24, 2022
People really be like "oh imagine a future society where humans have to be cybernetically enhanced by machines to get a job" bro wake up just be an American without a car
Show threadSteven ⬢Dec 24, 2022

@SwiftOnSecurity

Also smart phones.

Many restaurants don’t have a physical menu anymore, just a QR code.

Show threadro
@styfle @SwiftOnSecurity they often do have a physical menu hidden somewhere, you just have to ask, or be visibly confused by the qr code
Dec 24, 2022 at 7:47pmWeb
Show threadFrancis 🏴‍☠️ GulottaDec 24, 2022
@ro @styfle @SwiftOnSecurity try going to the doctor without a phone it’s rough
Show threadroDec 24, 2022
@reconbot @styfle @SwiftOnSecurity never needed a phone at the doctor. but also, how's that related...
Show threadFrancis 🏴‍☠️ GulottaDec 24, 2022
@ro @styfle @SwiftOnSecurity my hospital affiliatied doctors all want forms, information, checkins, and whatnot done online or via their apps. I’ve had nurses and desk staff chide me for not having 2fa setup or data sharing agreements between offices. All via the phone.
Show threadroDec 24, 2022
@reconbot @styfle @SwiftOnSecurity weird. i'm more used to "our accounting software hung up, so we'll print the receipt after the next appointment". my dentist wouldn't even take card. the most hi tech it ever got was the time i had to get a ct scan elsewhere and bring them the cd.
Show threadFrancis 🏴‍☠️ GulottaDec 24, 2022
@ro @styfle @SwiftOnSecurity I get a text, an email, and a phone call all asking me if I’m coming to my next appointment.
Show threadroDec 24, 2022
@reconbot i get a phone call if the reception person remembers
Show threadSherri DavidoffDec 25, 2022
@ro @reconbot @styfle @SwiftOnSecurity Wow, my $%!# doctors won’t even offer MFA (I’m guessing it costs them extra). They’re just like whelp, we can’t see the hackers steal your data so it’s not happening.
Show threadDLindseyDec 25, 2022
@sherridavidoff @ro @reconbot @styfle @SwiftOnSecurity Something like the SSO tax might be in play, I guess. Important security features should be standard or a small extra. https://sso.tax/
The SSO Wall of Shame

A list of vendors that treat single sign-on as a luxury feature, not a core security requirement.

The SSO Wall of Shame
Show threadSherri DavidoffDec 25, 2022
@SwiftOnSecurity @ro @styfle @DLindsey @reconbot Totally. Imagine if landlords made tenants pay extra for smoke detectors and fire alarms. There’s a reason regulations exist - perhaps we need to apply the same concepts to cloud safety.
Show threadFrancis 🏴‍☠️ GulottaDec 25, 2022
@sherridavidoff @SwiftOnSecurity @ro @styfle @DLindsey 💯
Show threadFrancis 🏴‍☠️ GulottaDec 25, 2022
@sherridavidoff @SwiftOnSecurity @ro @styfle @DLindsey I will also say most of my essential online services have completely inaccessible 2FA if you are slow, or have a hard time typing. I welcome regulation and accessibility in this area. (And innovation!)
Show threadSherri DavidoffDec 25, 2022
@SwiftOnSecurity @DLindsey @reconbot @ro @styfle The FIDO Alliance’s work should help with strong and ACCESSIBLE auth in the coming years… https://fidoalliance.org/overview/
FIDO Alliance Overview - Changing the Nature of Authentication

The FIDO Alliance is an open industry association with a focused mission: authentication standards to help reduce the world’s over-reliance on passwords.

FIDO Alliance
Show threadThiago FigueiróDec 26, 2022
@ro @reconbot @styfle @SwiftOnSecurity I thought this was going to be about having to read old magazines in the doctor’s waiting room.
Show threadHTTP 1.1/418 TeapotDec 24, 2022
@reconbot @ro @styfle @SwiftOnSecurity I’m the speaker-to-technology for a relative who’s just shy of 80. She has needed my help to get her social security payments set up, to interact with some of her medical folks since she can’t get to myhealth, and to schedule COVID vaccinations. Regular phone conversations can’t take the place of telepresence online medical video calls, so she can’t do that when necessary which cuts her off for more medical things.
Show threadPhilip Mallegol-HansenDec 24, 2022
@reconbot @ro @styfle @SwiftOnSecurity Genuine question: How so? I see the QR codes in restaurants, but I’ve never used my phone for anything besides browsing the web in the waiting room, when visiting my doctor. What am I missing?
Show threadFrancis 🏴‍☠️ GulottaDec 24, 2022
@philip @ro @styfle @SwiftOnSecurity MyChart has been eating most of my local offices
Show threadFrancis 🏴‍☠️ GulottaDec 25, 2022

@philip @ro @styfle @SwiftOnSecurity charts, forms, payments, appointments, etc

It’s awesome tbh but leaves a lot of people behind

Show threadPhilip Mallegol-HansenDec 25, 2022
@reconbot @ro @styfle @SwiftOnSecurity My office uses MyChart too, but only for scheduling, it’s available online without a phone, and you can still call to make an appointment as well. So it doesn’t feel like a “blocker” to folks without smartphones yet.
But I agree we’re moving in that direction in general.
Show threadJeremy ShaverDec 25, 2022
@reconbot @ro @styfle @SwiftOnSecurity My 90 year old neighbor was suffering from some [problematic but non-emergent] neurological problem - but she couldn't go to nearby urgent care because the only way to make an appointment was on line - which she wasn't.