Could you store your passwords in a phone app governed by a QR code?

Could ...? Sure. I think you meant Should ...? No, one shouldn't rely on QR code. Using QR code is similar to writing password on a sticker, but is even worse. The major difference is, that QR code is designed to be easily read by phones.

QR code can be duplicated. For instance, when you are waiting in line, many people around you can easily make picture of your QR code when you are using it, and then they can reuse whenever they want. Reading a text on your ID card from some distance can be hard. But QR code can be recognized much easier from the same distance.

Tags:

Passwords

Identity

Related

Does CVE-2020-0601 (CRYPT32.DLL critical exploit) affect Windows 7 and is there a patch to fix it? Certficate pinning: should I pin the leaf or intermediate? Is it a security vulnerability to tell a user what input characters are valid/invalid? Why do email server/clients block executable attachments? Can someone steal my IP address and use it as their own? What are the advantages and disadvantages of using a HackRF One compared to specific protocol sniffers? How can I recover steganographically hidden data from a photographic copy of the image? Is PGP for user authentication a good idea? Does revealing part of your hash give an attacker advantage when attacking your password? Clearing password field after an invalid login attempt What are the potential risks of leaving a device in public, but locked? For SameSite cookie with subdomains what are considered the same site?

Recent Posts