Remix.run Logo
Remix clone Hacker News
new | show | ask | jobsGithub
thewebguyd a day ago

Nah, if a bank or some other civic entity wants to have a "secure agent" for transactions/communication with me, then they should be the ones providing that.

Much like I expect my employer to provide me hardware, and that hardware is used exclusively for work.

I shouldn't have to spend my own money on another device, nor should they be asserting their desires for control onto my own devices.

dorfsmay a day ago | parent | next [-]

Yet you're paying to get a passport etc...

macbem a day ago | parent | prev [-]

And exactly who's going to pay for that?

thewebguyd a day ago | parent | next [-]

The issuing entity. They want a "secure device" to do business with me, then they get to issue said device.

Otherwise, they just get to be OK with offering me a website or letting me transact with them on my own device that's under my own control without stipulations like requiring attestation, or prohibiting root.

The point is, governments nor banks or other private entities, should be getting to dictate what can and cannot be done on someone's computing device.

ncruces 17 hours ago | parent [-]

They're happy to provide that. It's a called debit card that you take to an ATM machine.

It's been popular demand, not financial institutions, driving the change to “the smartphone can do everything, I don't want to take debit/credit cards with me everywhere.”

People don't want an additional card, or yubi key, or printed second factor, or whatever, to authenticate.

They want an app that uses a data connection, and a fingerprint to replace even needed a PIN. They tolerate a second channel: an SMS, if the app automatically reads it. That's as much inconvenience as the general public is willing to put up with.

They're starting to demand that this works offline for smaller spends. And they'll put up with a phone call as a 3rd factor for when they want to unblock a really high spend, like purchasing a car, but it can't happen all the time.

They want this to work reliably, even on holidays, all around the world. And they want the banks to cover losses if it all goes south.

Now try to design a system that covers the requirements people are demanding for, without trusting the terminal the people decided they want to access it from.

gambiting 12 hours ago | parent | prev [-]

At least here in the UK for years if you opened a bank account, even a free one, you'd get a debit card + a device for generating secure keys for online and telephone banking. Like a standalone, battery powered device the size of a calculator.

Like....why can't we just go back to that? Banks were "fine"(doesn't mean happy) to shoulder the cost of these devices then.