Boards
News
Market Data
Markets
Discover
Discover
AI Subscribe Login/Register account icon
S&P 500
7,077.09
(
-0.45%
)
US TECH 100
25,817.00
(
-0.21%
)
Dow Jones
49,210.05
(
-0.48%
)
Brent Oil
93.16
(
2.74%
)
Bitcoin
75,598.18
(
-0.39%
)
News Focus
News Focus
Post# of 235174
Next 10
Public Reply Private Reply New Post
Keep Last Read
Replies (1) Keep Next 10 Report Keyboard Shortcuts
Replies (1) Next 10 Prev Next

WBCTrader

Send PM Follow Ignore
Followers 8
Posts 4298
Boards Moderated 0
Alias Born 04/14/2016

WBCTrader

Re: Big Papa bear post# 189145

Wednesday, 11/01/2017 11:39:16 AM

Wednesday, November 01, 2017 11:39:16 AM

Post# of 235174
No, you would need to do one of either process on a different DEVICE. computer and smartphone for example.


(OOB) refers to authentication processes where authentication methods are conveyed through different networks or channels.

Where authentication factors are conveyed through a single device/channel—for example, entering
credentials via a device that also receives, stores, or generates a software token—a malicious user who has established control of the device has the ability to capture both authentication factors.Transmission of a one-time password (OTP) to a smartphone has traditionally been considered an effective out-of-band method. However, if the same phone is then used to submit the OTP—for example, via a web browser—the effectiveness of the OTP as a secondary factor is effectively nullified.

PCI updated their guidance February 2017

Bolded the important parts.
Public Reply Private Reply New Post
Keep Last Read
Replies (1) Keep Last Read Next 10 Report Keyboard Shortcuts
Replies (1) Next 10 Prev Next
Volume:
Day Range:
Bid:
Ask:
Last Trade Time:
Total Trades:
  • 1D
  • 1M
  • 3M
  • 6M
  • 1Y
  • 5Y
Detailed Quote