The idea that any widely transmitted identifiers' confidentiality should be its primary method of security is asinine.

The failure of any exploit regarding SSNs or the like is not on the offending party, but on each using party's failure to implement even a modicum of actual security.

▲

travoc 3 days ago | parent [-]

FYI calling something "asinine" is not an argument.

	▲	ndriscoll 3 days ago \| parent [-]
		A widely transmitted identifier that tons of organizations need to ask you for taxes is not secret. It's used to precisely identify who you claim to be. It's your username. There's not much to say about also treating it as your password except that it's asinine. It's like treating your first name/last name as a secret password.