Google is now backing a standard proposed by Apple engineers in January to create a default format for one-time passcodes (OTP) sent via SMS to users during the two-factor authentication (2FA) process. From a report: The standard, proposed by Apple engineers working on the Safari WebKit project, has now reached the status of official Web Platform Incubator Community Group (WICG) specification draft. “We’ve moved ‘Origin-bound one-time codes delivered via SMS’ to @wicg_, where we’re working on a shared spec with our collaborators at Google. Please take a look! Updated explainer, and specification,” wrote Apple’s Ricky Mondello. The proposal aims to fix some issues with the current state of SMS 2FA/OTP codes, all of which have different formats, unique per the websites sending the codes.
of this story at Slashdot.
Source:: Slashdot