<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body bgcolor="#FFFFFF">
<div>
<div><span class="Apple-style-span" style="-webkit-tap-highlight-color: rgba(26, 26, 26, 0.292969); -webkit-composition-fill-color: rgba(175, 192, 227, 0.230469); -webkit-composition-frame-color: rgba(77, 128, 180, 0.230469); ">SMS as a form of 2FA is unsuitable
considering the sensitivity of such information. On the other hand a government backed smart card would offer the appropriate level of authentication without locking out access to a section of users.</span><br>
</div>
<div><br>
On 30 Jun 2017, at 12:30, "Denis G. Wahome" <<a href="mailto:dwahome@gmail.com">dwahome@gmail.com</a>> wrote:<br>
<br>
</div>
<div></div>
<blockquote type="cite">
<div>
<div dir="ltr">Mark,
<div><br>
</div>
<div>While I do concur completely with your observation. I was considering the user group for the service. Other more advanced mechanisms would reduce the usability/accessibility by a large portion of the Country.</div>
<div><br>
</div>
<div>A better way would be a registration process to access your records where one can select a Channel for 2FA</div>
<div><br>
</div>
<div>Denis</div>
</div>
<div class="gmail_extra"><br>
<div class="gmail_quote">On Fri, Jun 30, 2017 at 10:54 AM, Mark Kipyegon via kictanet
<span dir="ltr"><<a href="mailto:kictanet@lists.kictanet.or.ke" target="_blank">kictanet@lists.kictanet.or.ke</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
SMS is not a secure implementation of two factor authentication.<br>
<span class="im HOEnZb"><br>
On 30 Jun 2017, at 10:40, "<a href="mailto:kictanet-request@lists.kictanet.or.ke">kictanet-request@lists.<wbr>kictanet.or.ke</a>" <<a href="mailto:kictanet-request@lists.kictanet.or.ke">kictanet-request@lists.<wbr>kictanet.or.ke</a>> wrote:<br>
<br>
<br>
><br>
> A simple 2 Factor Authentication mechanism via SMS would suffice to start<br>
> with.<br>
<br>
</span></blockquote>
</div>
<br>
</div>
</div>
</blockquote>
</div>
<div></div>
</body>
</html>