I don't think Apple are particularly concerned about whether the security questions are sensible, rational or childish. Apple have had a number of breaches where other people have gained access to user accounts and iTunes accounts. I suspect Apple is merely covering itself from a litigation point of view by being seen to have responded to the threat and beefing up their security measures. To have done nothing different would be somewhat indefensible should someone decide to sue Apple for losses on a hacked account. However, the fact the questions require a lot of us to make up answers and write them down in order to remember means should we get hacked, Apple can very easily sheet responsibility for the security breach back to us and away from them. Clever from an Apple lawyer's point of view, but really dumb from our point of view. But hey, life often involves dealing with a lot of dumb people.
I think your right Mark, they have enough of a userbase they don't really care. As someone else mentioned they have more than enough idevices to impliment multifactor authentication with public/private crypto. If they wanted secure that was the solution considering people only use itunes for those idevices. Instead they went half assed with something only to protect themselves from their own poor security practices in a court of law against someone that might have trouble proving what they did was stupid to the courts. I'm working on transitioning away right now and it's hard finding acceptable replacements and I feel like an idiot for buying back into apple when they made the intel switch. Now I'm heavely vested in their technology and transitioning out of it is proving to be more difficult that I first imagined it would be, won't make that mistake again.
Hi all. I have the same problem as many here do, I can not answer the questions Apple has provided and feel I would be able to answer them the same in the future. My solution, the answer to any question they ask of me will be 'Apple'. What ever they ask me, that one answer will work and cover me. Who picked these questions ? Pretty bad in my opinion.
This is waaayyy over the top for a store where purchases are typically one dollar or occasionally a couple of tens of dollars.
I honestly cannot answer the provided security questions. They don't make sense and are so trivial it is silly. How would one ever remember in two years from now?
And there is already a security question in place for my Apple ID! One that I could make up myself at Manage My Apple ID (https://appleid.apple.com/cgi-bin/WebObjects/MyAppleId.woa/)
Why not use the Apple ID security for the multiple services like iTunes store where I login with my.... Apple ID?
It is either a case of project teams not talking to each other, or a project by some schoolkid apprenticeship that has slipped through.
I cannot buy or download anything until this problem gets fixed, or until I start making notes of my fake answers... counterproductive security.
And it's not healthcare or government accounts that we are talking about. Agreed they would require an extra layer of security, and they provide me with the possibility of making up my own questions. To use this procedure for iTunes store is just silly, Apple.
In my case, iTunes is asking me for answers to questions I never provided answers for in the first place. I've never owned a car so how can I answer that one? It also asks what city was my first kiss? ***? I don't know! How can they expect me to answer security questions not of my choosing and of which there's no answer?
So, now I can't purcahse a **** thing so how does this benefit Apple?
It's me who can decide the level of security I want to give to my own account. If I have some valuable in my home, it's my decision to buy a safe to store them, or to leave them in my bedroom. Same thing here : a minimum level of security is wellcome (my door keys I use when I get out home), but the next level of secutity on my own data (data are mine, and it is my decision the way I use them) should be my decision and Apple should give me the chance to decide which level of security I want to store my own data. If Apple is unable to protect the data, I don't understand why I should be blamed for this. And the problem is that not only this extra level of security is required to buy music or new Apps, but also to download simple updates of already installed Apps.
I am boycotting this.
I will be asking developers for an alternative, non app store link to download.
I'm sure most will oblidge. Most apps already do.
I've also opened a ticket with apple support to ask how to opt out of this and explained the issues with the questions and that I won't be filling them out.
The alternative email is fine with me.
I suggest others do the same.
I'm done with the apps store.
I am given not much choice. Nearly all my devices are Apple, I read books on iPad, rent movies from Apple TV and listen to music bought in iTunes Store. So I did provide the answers to these security questions. Unfortunately, I had to invent 2 out of 3 as the questions failed to apply to me. I have an impression the security of my transactions decreased. I suppose I should have considered putting yet another 3 strong passwords instead of the answers. It would make sense. I also think that to majority of users the questions are fine. It feels bad to be reminded yet again not to be in majority.
You are my hero! That worked. Couldn't download an app on my ipad or phone without adding those three stupid security questions that I would NEVER be able to answer, let alone remember. Silly apple.
I downloaded the app from my iTunes on my Mac and just went into the purchased section of my ipad.. And voila!
I have been using Mac Stuff since I was a kid in the 1980's and have come to expect more intelligent thinking from Apple than this ridiculous Security Questions thing they are attempting to impose.
Strangely it is it is actually self harming for their company as the net result is lost app sales for them - ridiculous..
We all realise that security is important but i'm afraid whoevers idea of doing this seems to have recently joined the company from Microsoft.. As like many others the only way to remember these properly is
1 - write them down and occasionally lose them - thus needing to constantly recover the answers..
2 - do what many people are doing here - using work-arounds - answering X Y X or just using the last word of the question
When your customers are getting annoyed and resorting to using work-arounds to use your products you might want to look into changing things - but then again if you are a giant company with Microsoft style thinking then you probrably dont care..