Skip navigation

Forced Apple ID security questions for App store - why?

34836 Views 106 Replies Latest reply: Sep 1, 2013 12:07 AM by JoeDWoods RSS
  • EastDog Level 1 Level 1 (10 points)

    100% agree, neb.

    It's implemented so badly, so unexpectedly, and so obtrusively - I am just stunned.

     

    Badly:

    When working with data, it's axiomatic that "garbage in, garbage out."  Some unleashed working group at Apple flipped that on its head here.  With no flexibility to their mandated, intrusive questions, garbage choices will invariably yield garbage answers: answers that people cannot remember (see above), answers that are all identical (see above), answers that people feel violated providing (see above), answers that Apple will have to pay customer service reps to tell customers to fake (see above).  This isn't security, this is legal compliance - sadly illustrative of the fact that protection from legal action has nearly completely substitued for care and common sense in the past generation.

     

    Unexpectedly:

    Even Google, the undisputed king of TMI, gives you an option to kick these type of requests down the road (no, Google, I still don't care to give you my phone number), and staggers out their intrusive requests.  Apple, somehow, decided it's not completely insane to decide to lock customers out of any new purchases until they are willing to divulge information out their first kiss, childhood friends, and parents' romantic history.  Only this is rather insane... and inane.

     

    Obtrusively:

    Kind of covered already.

     

    In summary: I've already gone back to buying physical media on this new-release Tuesday -  given that I'm tied into the Apple ecosystem with the App store and whatnot, I'll probably end up making up some answers and writing them down in 1Password.  But at the lasting cost of my trust in Apple to treat its customers and data with actual care.  Sad.  Whoever is responsible for this is *terrible* at his job.

  • nothing89 Level 1 Level 1 (0 points)

    Security Questions?

    Your answering them wrong!

  • nothing89 Level 1 Level 1 (0 points)

    Tried that, gave an error that they couldn't all have the same answer.

  • yeahcooksie Level 1 Level 1 (0 points)

    I read through all 5 pages and then Logged in to reply. In over 10 years, I've never not found an answer on these forums. I agree that the problem isn't the fact that apple is trying to keep things secure, it's that the questions are downright juvinile and frankly, don't apply to every person who uses their product. Self written questions would end the problem. If I fake the answers, I won't remember them if I need to. This is just a really poor effort by a company I expect more from and spend plenty of money on. I'm not contesting the security, I'm contesting the way it's being done. Today, I'm heading to Amazon to purchase some music I planned to buy on itunes.

  • The Shrike Level 1 Level 1 (0 points)

    Here is your solution for this sort of moronic security scheme that in fact makes our accounts less secure:

     

    Option A: Insert absolute gibberish ";alksdayrptnlahlnalwejoq834598qyw" as an answer. Different gibberish for each question. This way nobody with access to view your facebook profile or who has a 10 minute converstaion with you on a park bench can hack your account. When you are asked the question and don't remember the answer just call apple's 800 number and make them burn money for imposing this stupid "how not to secure an account 101" crap on you

     

    Option B: Pick a question and count the ammount of characters in the question. Multiply that number by a number you can remember say "1953" and type in the resulting number as the answer to the question. You are basically encripting the question using a key only you know to come up with an answer you can quicly decript if you are asked in the future. This way nobody who knows you had a three legged poodle named Trippy can hack your account. Sample:

     

    Question: What was the name of your first dog?

    Character Count: 29

    Secret Key: 1953

    Encripition Formula: 29 x 1953

    Answer: 56637

     

    Added security: If you are afraid of a strong arm attack and don't want just numbers then always append some text to your answer like:

    Answer: stupidassquestion56637

     

    Message was edited by: The Shrike to clarify

  • CorinafromSBCUSD Level 1 Level 1 (15 points)

    This is a good solution, and I may go back and do just that. My problem with the security questions is that they are all fairly personal, and I'm doing this on a WORK computer. Since others have access to the computer and may need to update apps, using the provided questions means:

     

    1) I have to supply personal answers that might have to be shared with others in the office

    2) I make up answers that have to be written down or nobody will remember them

  • neb_neb Level 1 Level 1 (0 points)


    CorinafromSBCUSD raises a really good point, yet another (and perhaps a core problem here) is that the #securityfailteam at apple who put this in (sorry #securityfailteam, but it's true) did not assume an educational or professional environment and go back from there.

     

    One of my favourite things about Appple's OS' logic(s) is that they have good layered superadmin, admin, user, guest, noob user levels that work really well in multi-user environments and are mostly invisible unless you activate them.

     

    Seen in that context, putting in 'My first doll's name is/was....'   as what are effectively superadmin passwords to your AppleID account is clearly not appropriate.

     

    Get serious apple #securityfailteam and come up with a solid professional, layered account authentication system. Make appleid better, not naggier and not needing awful workarounds.

  • spongerobsquarehead Level 1 Level 1 (0 points)

    I can only agree that this new security measure is rubbish.  Most of the security questions are utterly meaningless FFS.  My favorite teacher?  My teachers sucked - all of them - why the f would I have a favorite one?  Who thought of these questions?  Why can't I enter my own that might mean something and that I could possibly remember the answer to if required?  Apple - what are you doing???

  • pablops Level 1 Level 1 (0 points)

    Yes, this is big-brother asinine b.s.  What idiocy and waste of time.  I used to have a perfectly good password and then some jerks at Apple decided I had to change it.  Then I had to screw around with those mindless, asinine security questions, where I clicked on one and typed in a random letter and then did the same to two more just to be able to use the store.  I will never remember them and don't care.  What utter rubbish!

     

    This is the kind of juvenile stupidy that ends up killing companies and driving people away.  Go away Apple - maybe some day you'll grow up into a real business. 

  • FrozenOxygen Level 1 Level 1 (0 points)

    Sorry I thought Apple had turned this off ... the solution is:

     

    De-authorise all your devices then Authorise them again. Then it will stop asking you for more questions and allow you to purchace from itunes and download apps.

  • MitchVsays Level 1 Level 1 (35 points)

    Hi all.

     

    The iTunes Store asks you to answer your security questions the first time you purchase an item from the iTunes Store on a computer or device that you haven’t used before.

     

    If you have trouble answering at least two of the security questions, you may be abe to reset the questions at

    http://appleid.apple.com and follow these steps:

     

     

    1. Click the "Manage your account" link

    2. Enter your Apple ID and password then click "Sign in"

    3. Click "Password and Security" on the left

    4. Enter your new security questions and answers then click Save

    5. Click Sign Out in the upper right-corner of the site

     

    If you are still unable to answer after doing so, contact support:

     

    http://www.apple.com/support/itunes/store/

     

    I hope this helps.

  • pablops Level 1 Level 1 (0 points)

    I've used all the devices before.  This is just s***** nonsense that was put in place.  Those Apple i***** should be forced to answer and enter 3 s***** questions every time they wake up their iDevices for abouta year, and maybe then they'd be less prone to devlope such mindless, pointless garbage. 

     

    <Edited by Host>

  • MitchVsays Level 1 Level 1 (35 points)

    Hi pablops,

     

    I have contacted myself and support person vaguely described that we are being asked those security questions if:

     

    - it's the device's first time to be used in the Store.

    - you don't have a credit card on file

    - you have not used your account for a long time.

     

    I am not sure what's the relevance but that they said.

  • colmjoleary Level 1 Level 1 (0 points)

    For me, this is not about security, it's about convenience, or lack of it.  I REFUSE to jump through hoops when I am the one parting with my hard earned money to buy a product.  IF apple want their store more secure then THEY are the ones that should be spending the money on making their date encryption better!!!  And IF this is all for the benifit of complying with the terms of the App providers then it beggs the question, what is all this data gathering for?  I do not want someone next week sending me emails advertising new cars etc.  And for the record, I do not drive, have never driven and have no plans to drive so have never, and will never own a car!  And no, I don't remember my first teacher, I was 3 years old!!!  As for the city where I was first kissed, I can't even remember the country...  Then again, I can't remember what I had for lunch yesterday either.

     

    How come not one of my banks seem to require as much hoop jumping when I use my internet banking?  Or paypal etc.  What makes Apple so special that a username, password and four digit pin/ date of birth isn't good enough? 

     

    It's like a shop that won't let customers in without a password because they keep their cash in a drawer.

     

    If I'm going to have to do this every time an app I have want's to upgrade I'm not going to do it, and if that means I have to delete the app then I will.  This is a classic case of a company expecting it's customers to do it's job for it.  A bit like Microsoft and product testing really.....

     

    As for the 64gb iPad I was seriously considering buying next week when I'm in London, forget it. I was sitting on the fence over the whole "we're too good for flash" situation but this was the decider.

     

    A very angry, almost ex apple customer.

  • troyd5676 Calculating status...

    Great answer if it works!   How do you "deauthorize" a device?  (I only have one)

1 ... 3 4 5 6 7 8 Previous Next

Actions

More Like This

  • Retrieving data ...

Bookmarked By (0)

Legend

  • This solved my question - 10 points
  • This helped me - 5 points
This site contains user submitted content, comments and opinions and is for informational purposes only. Apple disclaims any and all liability for the acts, omissions and conduct of any third parties in connection with or related to your use of the site. All postings and use of the content on this site are subject to the Apple Support Communities Terms of Use.