Skip to main content

Apple Engineers Propose a New Standard for SMS OTPs

Apple Engineers Propose a New Standard for SMS OTPs

Engineers at Apple have proposed a standardized format for SMS One-Time Passcodes (OTP). To be specific, Apple engineers working on WebKit, the core-component of the Safari web browser have put forth the proposal with two goals.

Firstly, the engineers want to eliminate the need for manually copying and pasting codes from SMSes, which can be annoying at times. In addition, they aim to establish a standard so that websites could trust the source of SMS and ensure that the SMS is being entered on the intended source website thereby making the system more secure.

To achieve these goals, the engineers propose a “lightweight text format” with the URL of the website added right into the SMS. Companies could also add the text they want at the beginning of the SMS. Take a look at the sample OTP SMS below for better understanding.

747723 is your FooBar authentication code.

@foobar.com #747723

In the above example, “747723 is your FooBar authentication code” represents the text added by brands while “@foobar.com” denotes the origin URL (https://foobar.com) and “#747723” is the actual OTP code.

“‘@’ and ‘#’ are sigils used to identify the text that follows them. Any origin which is schemelessly same site as https://foobar.com/ is an origin on which this code may be used.”, note the engineers.

This approach could make it easier for apps and websites to identify OTPs without compromising on security. If implemented, this could also eliminate spammy and malicious actors from taking over accounts with phishing sites.

As of now, Apple WebKit engineers and Google engineers have welcomed the proposal. There is no word from Firefox engineers so far. We could expect this new SMS feature to be rolled out in future browser updates. If it gets rolled out, third-party apps and services are more likely to adopt the technique which in turn would make it an industry standard for OTPs.

So, what are your thoughts on this new OTP  format? Let us know in the comments.

Comments

Popular posts from this blog

Lenovo IdeaPad Slim 5i Review: A Powerful Workhorse

It’s been quite some time since Intel announced its 11th-gen laptop processors, complete with the new logo design and Intel Iris Xe graphics. And yet, so far I’ve not gotten my hands on a laptop packing the new processor and iGPU. That all changed when Lenovo sent over the IdeaPad Slim 5i (Rs. 61,990) with […] The article Lenovo IdeaPad Slim 5i Review: A Powerful Workhorse was first published on Beebom

Twitter Wants to Build an ‘Open and Decentralized’ Social Media Platform

In an attempt to create a Facebook competitor, which everyone flocks to, Twitter became increasingly centralized over the years. Twitter CEO Jack Dorsey believes that’s the case and has now tweeted a lengthy plan to fund research to build an open and decentralized standard for social media platforms. It will “ultimately become a standard” that Twitter’s client will be based upon. Dubbed Bluesky, this project will see a team of up to five researchers , which could include open-source architects, engineers, and designers, being on-boarded in the near future. Currently, Bluesky has no team members but Dorsey tweeted that Twitter’s CTO Parag Agrawal has been tasked with finding a lead. The folks over at Firefox have already extended a helping hand, saying how the non-profit has contributed to decentralization. Enough jibber-jabber, but what exactly is Bluesky? And what does it intend to achieve? Dorsey, in his tweetstorm , states that the challenges being faced by centralized social...

Mysterious Drones Spotted in Colorado and Nebraska; Sources Unknown

A group of drones was reportedly been spotted in the sky at night last week in Colorado and Nebraska that made the residents anxious and worried. The police officials in charge have no idea regarding where these drones are from. “They’ve been doing a grid search, a grid pattern. They fly one square and then they fly another square,”  Colorado’s Phillips County Sheriff Thomas Elliot told the Denver Post. The drones have an approximate six-foot wingspan and stay 200 to 300 feet away from buildings. At least 17 drones have been spotted till now. They appear at around 7 PM at night and disappear at around 10 PM . Until now, the drones have not been caught doing any illegal or unofficial activities.  “They do not seem to be malicious. They don’t seem to be doing anything that would indicate criminal activity,” Sheriff Elliott added. The Federal Aviation Agency, the Air Force, Drug Enforcement Administration, and US Army Forces Command confirmed that the drones did not belong t...