Fingerprint Authentication is a Big Deal (at least for me it is)

I’ve been a smartphone user for close to a decade now. There are some conveniences—mobile internet, email, and camera, for example—I now take for granted. Other features, such as the ability to check my bank account balances via mobile app, have been available for a while, but slightly more cumbersome due to password authentication. Having to both recall and manually enter credentials to various services often outweighed the convenience and speed that was part of the selling point. While I understand the need for security, it did not make it any easier for me to quickly remember and enter the correct password for my banking app to check my balance while in line at the grocery store.

Utilizing a password manager has partly addressed this problem. I have used LastPass in my browser for a while now, though the LastPass mobile app had limitations—most notably, it did not auto-fill. While I could open the application, look up the password, copy it, and paste it into the field, that was several thumb taps and swipes away from the convenience I was looking for. For the bargain price of $12 a year, users gain the ability to auto-fill from LastPass on mobile. While that certainly made things easier, I still had to re-enter my master password at least once-a-day...which was approximately as often as I needed to log into mobile banking.

My recent mobile phone upgrade included a fingerprint scanner feature, allowing me to use my fingerprint as an authentication method instead of a numeric PIN or swipe codes to unlock my device. While I do still have to deal with the occasional “be sure your finger covers the entire scanner” error, unlocking and accessing my phone became quicker and easier. I was also pleased to discover not only could I unlock my phone using fingerprint, but I could also enable LastPass to accept my fingerprint authentication rather than the master password. Even better, however, was that most mobile banking apps allow the enabling of fingerprint access separate from my password manager. After I logged into my banking app and enabled fingerprint access, I had officially achieved the dream of one-touch secure access to information like my bank account balance, password manager, PayPal app, and other financial services.

An unexpected (but hardly surprising) consequence of my growing reliance on fingerprint authentication and password managers is I am now more impatient with manually keying in a password. I want (perhaps even expect) my computer to be as easy and quick to access as my phone and most websites, and it’s become a small, but notable irritation to momentarily return to manually entering a password.

Fingerprint scanners—like all security tools—are not infallible. Fingerprints can be copied faked, and physical changes to fingerprints may prevent access (I’ve scanned both my index fingers to be safe). In the end, I'm less concerned with these scenarios as I am with someone watching me type in my password or PIN. For me, fingerprint access provides an acceptably high level of security while also being much easier and faster than memorizing several passwords for several accounts.

...perhaps a USB fingerprint scanner is in my future?

Five Things You Can Do During Cyber Security Month

As we celebrate National Cyber Security Awareness Month here are five things you can do to stay safer and more secure online:

1. Change your Password

A good strong password is the root of all good security.  According to the traditional advice — which is still good — a strong password:

• Has 12 Characters, Minimum. A longer password is even better.
• Includes Numbers, Symbols, Capital Letters, and Lower-Case Letters
• Isn’t a Dictionary Word or Combination of Dictionary Words
• Doesn’t Rely on Obvious Substitutions. For example, “H0use” isn’t strong just because you’ve replaced an o with a 0.

You may also want to consider using a password manager or increasing the security of your passwords by using two factor authentication.

2. Make sure your Mobile Devices are secure

• Update or change your passcode.  
• Update your OS and Apps.
• Activate the ability to locate your device. 
• Find my iPhone (https://www.apple.com/icloud/find-my-iphone.html)
• Seek Droid (https://seekdroid.com/)

3. Run a virus scan

4. Update your Operating System and other applications

• Set aside time to install updates. even if they require you restart your computer. If you haven't updated in a while, you may need to run updates and restart a few times.
• Make sure that your various applications, including your web browsers, are running the most current versions.
• Don’t forget to also update your web plugins (i.e. media players like Adobe Flash and file viewers like Acrobat Reader.

5. Make sure that you have a backup strategy in place and are backing up regularly. 

Check out Tips for Backups for L&C specific advice. 

For even more suggestions, check out Consumer Report's 66 Ways To Protect Your Privacy Right Now and our own Information Technology Security Awareness site.

LC Google Apps Updates - June/July

A "Totally Rebuilt" Google Sites is on the Horizon - 06/13/2016

In the coming year, Google has announced a "massive overhaul" of Google Sites, rebuilding it almost entirely from the ground up. which will include drag & drop functionality, real-time collaboration, responsive design, and even mobile-friendly layouts. An exact release date has not been announced, but the new Sites is currently being tested through the Early Adopter Program and is expected to be released in 2017.

New Settings for 2-Step Verification - 06/20/2016

2-Step verification provides an additional layer of security when protecting your account. Users may now choose from multiple verification options by visiting the "My Account" area and navigating to Sign-in & Security > Signing in to Google > 2-Step Verification. Options include entering a security key from the Google Authenticator App, receiving a verification code via text, or receiving a mobile popup.

Choose a file’s folder location when you make a copy in Google Docs, Sheets, and Slides - 7/18/2016

This update addresses a minor Google Drive annoyance: when duplicating a file in Google Docs, you may now specify a location for the copy, rather than the copy automatically appearing in the location of the original. While the Google Apps release calendar indicates the feature would be available August 1st, it is currently not available. We'll be sure to announce via Twitter when it becomes available.

Mobile Updates

• Document outlines available for Google Docs Mobile - 6/1/2016
• New editing features in the latest Google Docs and Sheets Mobile Apps - 6/15/2016
• Respond quickly with improved Google Docs, Sheets, and Slides comment notifications on Android and web - 6/29/2016
• Announcing Android add-ons for Docs and Sheets - 07/28/2016

I didn't REALLY understand it until...

Image Source

For a couple years, I'd been hearing the buzzword (or buzzphrase) "internet of things." I'll be honest, thought I understood the concept well enough: a whole bunch of devices in your house that can connect to the internet. I figured we were already there in a lot of ways, and I hadn't really concerned myself with why I should be too concerned about it. When my toaster needs permission to send me emails about the status of my toast, well, then I'll look into the matter.

Well, that was until "Hello Barbie" spelled something out for me.

Mattel recently announced they would be releasing "Hello Barbie," an internet-connected Barbie doll capable of having conversations with the doll owner. Reportedly, Barbie will store conversation data to a remote location, and draw upon the stored data to have more meaningful and increasingly well-informed conversations with children who own them. Unsurprisingly, this raised more than a few red flags in the minds of parents, as well as any other individual concerned about privacy rights for kids. While I personally do not have children, the issues tied up in this one internet-connected toy suddenly had me thinking of a laundry-list of related debates and discussions. I couldn't not think about the internet of things.

Look at that. I don't even own a "Hello Barbie" and she's already taught me plenty.

• What is The Internet of Things? - "FW: Thinking"
• FTI Afternoon Session: Big Data and the Internet of Things