Here’s how Apple wants to change OTP messages
Two-step verification is a popular way to add extra security to your bank, email, social media and other accounts. However, every service has got a unique format for OTP messages. This not only results in confusion for the end user but also makes it difficult for apps and websites to extract the OTP from the SMS automatically. Apple engineers are looking for standardisation on OTP messages.
The WebKit developers have suggested two ways to improve the user experience with OTPs. The developers feel that adding the login URL within the OTP message for a service will make it easy for users to identify OTPs and also the risk of entering OTPs in a phishing websites gets reduced.
Another way at improving the experience with OTPs is to standardise the format of OTP messages for all services. This will enable browsers and apps and to easily read OTPs for quick access.
“According to the new proposal, the new SMS format for OTP codes would look like: 747723 is your WEBSITE authentication code. @website.com #747723 The first line is intended for human users, allowing them to determine from what website the SMS OTP code came from. The second line is for both human users but also for apps and browsers,” according to a report by ZDNet.
Talking about securing iPhones, a new report by CNBC has suggested that Apple may include a new Face ID and a 3D camera sensor in its future iPhones. As per the report, Apple’s FaceID will be “refreshed,” which could mean that Apple may enhance it on the security front.
This report is based on a new research note from the analysts of Barclays and specifically talks about the iPhones that are expected to launch in September. For those unaware, Apple this year is rumoured to launch iPhones in two batches — once in March where it is said to launch the iPhone SE 2 (or iPhone 9) and then later in September it is said to launch three iPhones in iPhone 12 lineup as per traditional launch cycle.