Guild Wars 2

I’ve been having a lot of trouble logging into my account due to the sms not getting delivered on time. Fault credit to my phone company.

The only other method of authentication is email. which is not so secure. google app is frankly speaking looking not good at all.

So here’s suggestion 1
Instead of displaying the security code in the email. is it possible to have it encrypted as bank would do your statement?

if excrypted code isn’t possible, here’s suggestion 2
How about, let us choose 3-5 alphabets that is needed to be place either in front or after the code, choice is up to player, ie: code sent via email: 1234, my choice of 3 alphabets is zdp , i have choose to place alphabets behind the code so i would put 1234zdp. so without this 3-5 alphabets, even when the players email is also hacked, as you have suggested in the knowledge base article. Hacker would not be able to use the code without the pre-selected alphabets.

and if that isn’t possible, Suggestion 3.
I have set up my email to only use on my tablet or smartphone with email capability, it send me notification whenever I have an email delivered to me. This way I can monitor if a code is being sent when I am not logging into my account.

So, this suggestion is let player be able to intercept and stop hacker from logging into their account when they received suspicious unsolicited email verification code. ie go to my account page and click disable current code and lock the game from my tablet or another computer (ie when i am at work)

Thank You

I use the google authenticator and have had no issues.

Just to vouch for it: I, too, use the Google Authenticator. I think I’ve been using it for over a year now, and I’ve had no trouble at all with it.

same here, google authenticator is fine afaik

If you have an authenicator on your email, it’s more secure then not. If someone really wants to get into your stuff, they will find a way. Most of these are to stop the regular hacks that account.

The 3 methods available are fine. This isn’t a bank, and doesn’t need to protect banking information (that’s handled in game when you buy stuff from the store).

For email authentication to fail, your email has to be compromised and if your email is compromised, nothing else matters because they can contact support to unlock your account. If you’re getting random verification emails, note that your login info is compromised, but they’re stopped there if they can’t access your email.

ArenaNet doesn’t need to add anything else and email authentication is actually the superior option. In the past, the average user may have unknowingly accepted an authentication request due to ArenaNet making it a link in the email, but now it’s a code you have to enter into the launcher. What you should be looking at is securing your email. Any decent email provider is going to offer a lot of options, including both SMS and an authenticator, as well as double verifications for unknown devices instead of just the basic IP verification – if you allow GW2 to remember a VPN, everyone on it can bypass your security.