1. Home
  2. Authentication

Authentication

Blockchain media authentication app eyes news journalism as primary use case

Tapping into underlying blockchain infrastructure, Nodle’s Click application allows users to authenticate media content for various use cases.

Decentralized infrastructure network provider Nodle has released the first version of its blockchain-based media authentication application called Click, which could prove useful in combatting artificially generated media and fake news. 

As previously reported by Cointelegraph, Nodle has developed a software development kit (SDK) for its ContentSign solution, which cryptographically proves the integrity of data captured by mobile devices using blockchain technology.

The Click application supports the Coalition for Content Provenance and Authenticity (C2PA) and is a member of the Content Authenticity Initiative (CAI). The latter is a project led by Adobe and the Linux Foundation to create a future standard for media attestation.

Read more

Bitcoin Bull Market May Drive Russian Miners Underground

The danger with Google’s new cloud backup for 2FA authenticator

Google’s new 2FA authenticator update could leave users vulnerable to single-point hacks and “SIM swapping” scams.

Google released an update for its popular authenticator app that stores a “one-time code” in cloud storage, allowing users who have lost the device with their authenticator on it to retain access to their two-factor authentication (2FA). 

In an April 24 blog post announcing the update, Google said the one-time codes will be stored in a user’s Google Account, claiming that users would be “better protected from lockout” and it would increase “convenience and security.”

In an April 26 Reddit post to the r/Cryptocurrency forum, Redditor u/pojut wrote that while the update does assist those who lose the device with their authenticator app on it, it also makes them more vulnerable to hackers.

By securing it in cloud storage associated with the user’s Google account, it means that anyone who can gain access to the user’s Google password would then subsequently obtain full access to their authenticator-linked apps.

The user suggested that a potential way around the SMS 2FA issue is to use an old phone that is exclusively used to house your authenticator app.

“I’d also strongly suggest that, if possible, you should have a separate device (perhaps an old phone or old tablet) whose sole purpose in life is to be used for your authentication app of choice. Keep nothing else on it, and use it for nothing else.”

Similarly, cybersecurity developers Mysk took to Twitter to warn of additional complications that come with Google’s cloud storage-based solution to 2FA.

This could prove to be a significant concern for users who use Google Authenticator for 2FA to log into their crypto exchange accounts and other finance-related services.

The most common 2FA hack is a type of identity fraud known as “SIM swapping” which is where scammers gain control of a phone number by tricking the telecommunications provider into linking the number to their own SIM card.

A recent example of this can be seen in a lawsuit filed against United States-based cryptocurrency exchange Coinbase, where a customer claimed to have lost “90% of his life savings” after falling victim to such an attack.

Notably, Coinbase itself encourages the use of authenticator apps for 2FA as opposed to SMS, describing SMS 2FA as the “least secure” form of authentication.

Related: OFAC sanctions OTC traders who converted crypto for North Korea’s Lazarus group

On Reddit, users discussed the lawsuit and even proposed that SMS 2FA be banned, although one Reddit user noted it currently stands as the only authentication option available for a number of fintech and cryptocurrency-related services:

“Unfortunately a lot of services I use don’t offer Authenticator 2FA yet. But I definitely think the SMS approach has proven to be unsafe and should be banned.”

Blockchain security firm CertiK has warned of the dangers of using SMS 2FA, with its security expert Jesse Leclere telling Cointelegraph that “SMS 2FA is better than nothing, but it is the most vulnerable form of 2FA currently in use.”

Magazine: 4 out of 10 NFT sales are fake: Learn to spot the signs of wash trading

Bitcoin Bull Market May Drive Russian Miners Underground

Internet Computer’s ORIGYN is watching the watches using NFT authentication

ICP-powered ORIGYN is leveraging blockchain and biometric technology to tackle the issue of counterfeit watches.

ORIGYN, a Swiss foundation that uses artificial intelligence (AI) to identify and authenticate objects of value, has partnered with luxury watch marketplace WatchBox. The pair will co-produce certificates of authenticity in the form of NFTs that enable customers to trade the digital ownership of a watch. 

ORIGYN is the largest project on the Internet Computer Protocol, or ICP, developed by The DFINITY Foundation blockchain. Individuals who purchase a collector quality timepiece via WatchBox can expect ORIGYN to certify the authenticated object thanks to its biometric technology. Each watch is given a unique biometric fingerprint and an NFT that contains all of this information is minted. 

These are utility NFTs that may offer customers insurance, digital provenance, concierge service, and access to exclusive experiences. Users can point their phone cameras at a watch, scan it via the application and verify its serial number. ORIGYN’s utility NFTs will be rolled out to WatchBox consumers in the summer of 2022.

Cointelegraph spoke to Daniel Haudenschild, chief executive officer of ORIGYN Enterprise, the for-profit arm of the ORIGYN Foundation, who said that authentication NFTs will make secondary market trading faster and safer for buyers and sellers alike. He said that the secondary market in luxury watches is expected to reach as high as $32 billion by 2025.

"By combining blockchain, unique luxury goods biometrics technology and our utility NFTs, we aim to authenticate luxury goods and ensure their 'unfalsifiability' traceability throughout their use, from sale to second hand, and allow customers to make luxury purchases in complete security."

According to Haudenschild, tracking provenance is one the oldest use cases for blockchain, but using authentication NFTs provides a "direct route to your consumer in a way that brands and manufacturers have never had before." He used watchmaker Omega as an example, stating that if Omega had a customer database of all the owners of its watches, even those who purchased via the secondary market, it could offer them free tickets to the next James Bond movie. 

According to ORIGYN the Swiss watch industry alone loses $2 billion annually to counterfeits, and over 40 million counterfeit luxury watches are produced and sold annually. More than 37% of luxury end-consumers in France have bought a counterfeit product without knowing it. 

Haudenschild said that many would-be buyers are fearful of being duped and weary of the second-hand market. He added that this leads to an illiquid market in addition to diminishing consumer loyalty and brand equity.

Related: Internet Computer eyes 50% move as ICP enters 'falling wedge' breakout territory

Recently, ORIGYN partnered with the Union of European Football Associations, or UEFA, Foundation for Children on an "NFTs for Good" initiative of historic collectibles, and will premier on ORIGYN's soon-to-launch NFT marketplace, Impossible Things.

Bitcoin Bull Market May Drive Russian Miners Underground

Bitfinex Pay to integrate U2F authentication for online merchant payments

Cryptocurrency exchange Bitfinex launches a new authentication standard for online payments service Bitfinex Pay.

In an effort to increase customers' security and privacy on their platform, cryptocurrency exchange Bitfinex has announced the adoption of an open authentication standard U2F within its merchant payments service Bitfinex Pay.

The move enables the capacity for online stores and merchants adopting the Bitfinex Pay widget to receive payments for goods and services in a range of crypto assets, including Bitcoin (BTC), Ethereum (ETH), Lightning Network BTC (LN-BTC) and Tether (USDT) on the Ethereum and Tron blockchains.

Customers of a registered merchant can choose the ‘Pay with Bitfinex’ option upon checkout. After a brief detour through the Bitfinex payment gateway, the customer will be returned to the merchant's website. Once confirmed, payment will be sent directly to the merchant’s connected Bitfinex wallet address.

With this introduction, Bitfinex is positioning the U2F key — a physical USB device — as an alternative to traditional two-factor authentication methods such as text-message or app notifications. The devices can be used across laptops and mobiles and require a 6-digit passcode to grant payment approval.

CTO at Bitfinex, Paolo Ardoino shared his comments on the feature:

“As a trailblazer in digital payments, Bitfinex Pay has already become a popular payment tool and with the addition of U2F we are providing our users with further means of protecting themselves.”

He continued to say: “These security keys make it almost impossible for a hacker to intercept both your password and the two-factor code.”

Related: Canadian Bitcoin miner Blockstream joins crypto unicorns with $3.2B valuation

In November last year, payments giant Paypal debuted cryptocurrency payments on its U.S. platform, granting customers the ability to buy, hold and sell a selection of popular digital assets. More recently, this feature branched out its U.K. market.

In time, Paypal plans to facilitate the transaction of crypto payments across their established network of 26 million online and physical merchants.

Bitcoin Bull Market May Drive Russian Miners Underground

Ukrainian President Signs Law Opening Door for Digital Hryvnia, Regulatory Sandbox

Ukrainian President Signs Law Opening Door for Digital Hryvnia, Regulatory SandboxPresident Volodymyr Zelensky has signed a law that will allow the National Bank of Ukraine to issue its own digital currency. The new legislation, which aligns Ukrainian regulations with EU rules, will also stiffen authentication requirements for clients of payment service providers. New Legislation Allows Ukrainian Central Bank to Issue Digital Currency The President of […]

Bitcoin Bull Market May Drive Russian Miners Underground

Utility-focused NFTs: the future of blockchain art?

To stand out in a saturated market, NFT startups should focus on real use cases, according to COO at NFTY Labs, Titan Inc.

Transitioning from static digital collectibles to tokens with real utility will lead to a new generation of NFTs according to Tytan Inc the COO of NFTY labs, a platform focused on building products for the NFT space. 

In a recent interview with Cointelegraph, he said that even if the market is saturated, there is still room for startups to raise funds in the NFT ecosphere.

“Most VCs are kind of catching on to the fact that a lot of the real value is in how you can use an NFT and not so much about what it looks like.”, he pointed out.

Titan Inc. is particularly interested in NFTs as a method of authentication for accessing large databases, which they believe would solve the privacy and security issues inherent in traditional access systems based on passwords and user names. 

“You replace that with a hardware wallet with the nontransferable NFT on it. And now that is your method of authentication.”

Check out the full interview on our Youtube channel and don’t forget to subscribe!

Bitcoin Bull Market May Drive Russian Miners Underground