site banner

Friday Fun Thread for May 31, 2024

Be advised: this thread is not for serious in-depth discussion of weighty topics (we have a link for that), this thread is not for anything Culture War related. This thread is for Fun. You got jokes? Share 'em. You got silly questions? Ask 'em.

5
Jump in the discussion.

No email address required.

I wouldn't be surprised if the "door app" collects behavioural data that the operator can sell as a side gig, enabling them to undercut the previous NFC-based system when offering the system to your office. (They might also figure this makes it easier to issue and revoke access than if they had to issue/collect physical tokens.)

The behavioural data can be used in some ways in intelligent buildings for legitimate purposes (like telling app users that the company gym is at capacity so you don't bother grabbing your gym bag), but the data will absolutely be used to make profit for the provider at some point.

They might also figure this makes it easier to issue and revoke access than if they had to issue/collect physical tokens.

Wouldn't token-based authentication give each token a unique code whose access can be revoked in the event that the token is lost or stolen?

I managed my small company's NFC door system and yes: we had a database with every employee next to their NFC tag ID and we could revoke them without confiscating the key. Pretty sure that's standard on every system you'd buy. Probably if you're homebrewing a solution, too.