This has been a top-10 most requested feature for some time. There are multiple reasons for hardware authentication to be implemented on both the viewer and streamer sides. I'll list a few reasons below if that is what's needed to get this implemented.
All accounts generally contain some form of Personally Identifying Information. For most viewers it'd just be your Payment Information, Phone Number, and any Connected Accounts you have.
For Streamers, people who have Affiliate or Partner status. Not only is the above true, but you now have your Tax Information, Banking Details (Limited). Streamer accounts tend to be more sensitive by nature.
Granted, Payout information does require a Re-Authentication, but if they have access to your password and phone number (assuming SMS 2FA) its over.
There are also issues with 2FA-TOTP (Rolling 30-second codes generated in an app). Namely that people can fall for phishing attempts with TOTP.
I want something secure for my account and my community that I put time, effort, and care into.
Editing this, it seems at some point twitch removed the emails from the subscriber list. however the point remains there is still a LOT of sensitive information
This has been a top-10 most requested feature for some time. There are multiple reasons for hardware authentication to be implemented on both the viewer and streamer sides. I'll list a few reasons below if that is what's needed to get this implemented.
All accounts generally contain some form of Personally Identifying Information. For most viewers it'd just be your Payment Information, Phone Number, and any Connected Accounts you have.
For Streamers, people who have Affiliate or Partner status. Not only is the above true, but you now have your Tax Information, Banking Details (Limited). Streamer accounts tend to be more sensitive by nature.
Granted, Payout information does require a Re-Authentication, but if they have access to your password and phone number (assuming SMS 2FA) its over.
There are also issues with 2FA-TOTP (Rolling 30-second codes generated in an app). Namely that people can fall for phishing attempts with TOTP.
I want something secure for my account and my community that I put time, effort, and care into.
Editing this, it seems at some point twitch removed the emails from the subscriber list. however the point remains there is still a LOT of sensitive information