When you already have an account and install app for first time there should be extra verification next to just username and password. Because now anyone can install app and unlock your home when they know your username and password.
The second factor authentication is in our plans but it will not be delivered shortly. The whole idea about password is to keep it in secret 
Yeah ofcourse. But setup a second factor based on email… should not be that hart. Because at the signup process you have the extra verification… but afterwards you do not. I someone hacks the password they can just install the app … login… en even remotely open your frontdoor when you also use the bridge! Very big security issue if you ask me…
Jeremy, if someone hacks your password I bet she/he will go for your bank account first and would not worry that much about your door lock. It’s a hypothetical “what if” discussion. You need to keep your credentials safe. All of them.
Ok. Very good. So based on your arguments. Dual factor authentication which is a defacto standard at this moment is not needed. Sorry I am an IT security guy… you are wrong.
Jeremy you are right, the MFA is a standard and as I mentioned it is in our backlog. The security is our top priority and this feature we will delivered but unfortunately now we focus on different area.
Good to know. Thanks!
The last message from this topic (MFA) is 1 year old . Is the MFA is now implemented and if not yet, when it’s planned ? BR
@Tedee.admin I’d like to second on this. The absence of MFA is quite a big security flaw. MFA is an absolute standard to have nowadays. Do you have any estimates when it would be implemented?
I see tedee admin is inactive , @Konrad maybe you can comment ?
Thanks
@Skiratus, Thanks for the feedback. If you’d like to use MFA now, we recommend signing in to the Tedee app with your Google, Apple, or Microsoft account - these all support MFA. Native MFA for email/password logins is not available yet, but it’s something we’re considering for the future.
1 Like
@Konrad @Tedee.admin @Tedee.support @IT_Tedee I can’t emphasize more on this!! This is not considered as a feature, but the most important security feature nowadays. This should have been implemented at the very first step of building the UI/UX.
Security should be AT top of the list of the things you are working on. The smart lock is installed on people’s front door for god sake and a database breach on your end, which happens all the time nowadays, can put people’s security and safety in jeopardy.
Let me again emphasize the fact that a database breach means all the usernames, passwords and addresses will be available to the hacker. You may say the hacker is not a thief to come to your house, but such information can be easily sold on black market to whom can make use of such information.
To sum up, as someone who just recently bought tedee pro and am happy with the product itself and its convenience, it is truly irresponsible of me puting my house and family at risk using tedee.
I will unmount my tedee from my lock until this is resolved as I am not planning to use google account or any other than tedee. You should take into account that so many users might not even know this security concern exists with tedee account and are using tedee account id. So their safety is at risk without knowing and imho, it is your duty to address this issue asap