We are introducing a new security feature today for the billing portal of the Star Trek Online and Champions Online websites. Read more to learn how this new feature helps to improve the security of your account.
Just a clarification please. From all of the docs I;ve seen, this is computer based. In the comments, it;s mentioned that it's IP based. Can we clarify which it is please? I use a wide range of addresses so if it is IP based, I;m going to have to opt out right away.
Just a clarification please. From all of the docs I;ve seen, this is computer based. In the comments, it;s mentioned that it's IP based. Can we clarify which it is please? I use a wide range of addresses so if it is IP based, I;m going to have to opt out right away.
It is my understanding that if you log in on your home computer you can save it to Account Guard and it will remember that location. Now if you log in from a laptop, you will be asked again and you can add the laptop and it will remember. Now if you are at a friends computer, then you will be asked and decline adding it. Now if you do that, you would not be able to login from your friends computer.
I've got two questions for you. Is this something Cryptic has developed internally? If not, can you direct us to the website of the software company who produces the technology so we may learn more about it?
____________________________________________
The poster formerly known as LordOfPit, and his blog.
* Dec 2007 (CO)
* Oct 2008 (STO)
I've used this feature, and I hate it. Anything that requires me to alt + tab alt to type in a code is terrible. Either put it on the launcher, or get rid of it please... This game doesn't need this level of security...
I've used this feature, and I hate it. Anything that requires me to alt + tab alt to type in a code is terrible. Either put it on the launcher, or get rid of it please... This game doesn't need this level of security...
Agreed, especially since when I alt-tab out of STO it's hit or miss as to whether I can get back in or if I'll just end up with a small black screen and have to kill the session.
Also, tying the browser part in with cookies is just bad. Those of us who practice "safe computing" regularly delete temporary internet files, which includes cookies. That means any time we clean house, we'll have to generate yet another email with a code.
If we have to do this to just log into the game itself, it will become very old very quickly.
Question: For game login, will this process only affect the initial login for a game session or will it kick in whenever we log out one character and bring in another? I do this quite a bit when doing Duty Officer missions.
It is my understanding that if you log in on your home computer you can save it to Account Guard and it will remember that location.
I don;t access the net from home. I'm in a dead area with no access. I;m always wireless elsewhere on I believe upwards of 17 different access points during a typical week.
Although always with one of two computers but only one has STO installed.
I think its a good idea for players that want the extra security. For players that find it inconvenient, maybe the system should be optional, that you can enable on your account page. Disable at your own risk?
Edit : Apparently this option is already available. So what's all the crying about? Geeze. Use it or just disable it. I swear some people just search for something new to complain about ... wait its the Forums .. :rolleyes:
I think its a good idea for players that want the extra security. For players that find it inconvenient, maybe the system should be optional, that you can enable on your account page. Disable at your own risk?
That's already in there and I believe was the major issue during the beta. The FAQ linked to up there mentions this.
I think its a good idea for players that want the extra security. For players that find it inconvenient, maybe the system should be optional, that you can enable on your account page. Disable at your own risk?
It's not so much not wanting extra security, but more about what type of security is involved. Cookie-based is less than optimal for the reasons stated in my previous post.
I play two other MMOS, both of which have additional account security features that do not involve cookies or emails with codes in them.
I'll have to see how this shakes out when I log in tomorrow; hopefully it's not as heavily cumbersome as it sounds.
"Critics who say that the optimistic utopia Star Trek depicted is now outmoded forget the cultural context that gave birth to it: Star Trek was not a manifestation of optimism when optimism was easy. Star Trek declared a hope for a future that nobody stuck in the present could believe in. For all our struggles today, we haven’t outgrown the need for stories like Star Trek. We need tales of optimism, of heroes, of courage and goodness now as much as we’ve ever needed them." -Thomas Marrone
Not sure I understand it right...we have to enter a code every time we enter the game or website, or does it just apply when buying Zen?
Not everytime.
When you login to the game normally, you will be prompted for a Code.
The code is emailed to the address you have registered.
Take that code from the email, enter it, and done.
You will not ever have to submit another code if you only play from one computer/IP address.
[SIGPIC]Handle: @kirian_darkstar
Registered: Oct/2009 , LTS : Feb/2011
Fleets: Warriors of the Phoenix, Kirian Industries[/SIGPIC] Three years and still no Captain Klaa hair...
Account Guard is one of the worst types of 'account security' imaginable.
It doesn't address the type of hack that actually happened to Cryptic's database in the past. Like Windows Vista's UAC, it repeatedly annoys the customer and gives a false sense of security while not actually making the account more secure. And the ten IP address limit in no way makes an account more secure, but it does present a significant risk of permanently locking a paying customer out of their game account if they move or even if their ISP simply changes their dynamic IP address range.
A security key system, like several professionally made MMOs have, is far more secure than this cheap Account Guard. But that would require spending money to implement, and it would also require that someone at PWE have a basic level of competence with computers that the recent forum transition has proven that they simply do not have.
"Any change to non-good alignment immediately strips the ranger of all benefits, and the character becomes a fighter, with eight-sided hit dice, ever after, and can never regain ranger status."
I think its a good idea for players that want the extra security. For players that find it inconvenient, maybe the system should be optional, that you can enable on your account page. Disable at your own risk?
Edit : Apparently this option is already available. So what's all the crying about? Geeze. Use it or just disable it. I swear some people just search for something new to complain about ... wait its the Forums .. :rolleyes:
I can't get to the Main Menu that the F&Q instructions describe in the article...
How about a little more detail in how to disable this BranFlakes ... ???
Or perhaps a LINK ?
Or even...
How about making the F&Q with the Article actually say,
"You Have to Contact CS at this Time to Disable it"
Like it says in the Tribble Forum Thread Post. :rolleyes::rolleyes:
Which means, that one can no longer sign into Tribble or Redshirt without having to use Another FORCED UPON US AGAIN... process...
Jeebus Christmas !!@!
STO Member since February 2009. I Was A Trekkie Before It Was Cool ... Sept. 8th, 1966 ... Not To Mention Before Most Folks Around Here Were Born! Forever a STO Veteran-Minion
Agreed, especially since when I alt-tab out of STO it's hit or miss as to whether I can get back in or if I'll just end up with a small black screen and have to kill the session.
Also, tying the browser part in with cookies is just bad. Those of us who practice "safe computing" regularly delete temporary internet files, which includes cookies. That means any time we clean house, we'll have to generate yet another email with a code.
If we have to do this to just log into the game itself, it will become very old very quickly.
Question: For game login, will this process only affect the initial login for a game session or will it kick in whenever we log out one character and bring in another? I do this quite a bit when doing Duty Officer missions.
I have this issue CONSTANTLY with my banks and have to reverify at least once a week.
This may or may not be a related issue but I will just throw this out since some of you seem informed.....
I run a blocking program a good deal of the time. I have to turn it off when I play ANY game. Except STO. Any other game the launcher wont even connect with it running. Game play is impossible. If I turn it on while in game the game disconnects. But not STO. Launcher works and game plays just fine with little to no lag. I have always wondered what was so special about STO that made it oblivious to security features that bigger name games cant get around.
And the ten IP address limit in no way makes an account more secure, but it does present a significant risk of permanently locking a paying customer out of their game account if they move or even if their ISP simply changes their dynamic IP address range.
Nope; you can delete obsolete entries. That eliminates that concern. Edit: actually, it rotates off the oldest; that completely eliminates this concern, unless you've logged on from 10 IPs recently that are no longer under your control *AND* lost your email address. If that happens, you're a serious edge case, and CS can deal with you.
This is a good solution. Keyfobs are better, but they're more expensive. This solution will improve everybody's security, not just those willing to spend money.
Does it fix every possible problem? No. Neither would keyfobs. Security comes in layers, not panaceas.
Former moderator of these forums. Lifetime sub since before launch. Been here since before public betas. Foundry author of "Franklin Drake Must Die".
I was just wondering who exactly you have to contact when you don't recieve the email, I went to log into the tribble server and came across the account guard for the first time, now I've searched my e-mails and even the spam and there's nothing in there but the 2nd anniversary and some pre-order on a random game.
There seems to be some confusion. These questions and answers should help:
Q: I use a wide range of IPs through my ISP, and change it frequently. It sounds like I will need to opt-out of Account Guard because I am easily going to be hitting the max IPs allowed?
A: Users with changing IPs on a single computer will not need to opt out of Account Guard. Account Guard performs its security checks against your computer or your web browser, not the originating IP. Your last originating IP, however, will be visible to you under the "Manage Account Guard" on the Cryptic Billing Portal.
Q: When this get implemented to the game, am I going to have to alt-tab out of the game to get this code? If so, can this be added to the launcher instead?
A: Account Guard, which is currently available on our test shards, will be implemented into our main clients in the near future. When that happens, users will receive an e-mailed code to proceed into the game. However, once the code is entered, Account Guard will work silently to verify the security of your account whenever you log in from that computer, regardless of its originating IP. A new code will only be required when you log in from a different computer.
Q: Do we have to enter a code every time we enter the game or website, or does it just apply when buying ZEN?
A: As of 6/28/2012, the web portion of Account Guard is only active on the Cryptic Billing Platform (secure.crypticstudios.com). The Cryptic Billing Platform allows you to manage your secure account information, and can be accessed from your account page on the Perfect World Website. Once you have saved a web browser (Billing Platform) and a computer (Game Client), you will not need to submit another Account Guard code unless you change computers (for game logins), or clear your specific browser's cookies (for Cryptic Billing Platform logins on the web).
Once you have saved a web browser (Billing Platform) and a computer (Game Client), you will not need to submit another Account Guard code unless you change computers (for game logins), or clear your specific browser's cookies (for Cryptic Billing Platform logins on the web).
So I have to enter the code everytime, when my browser deletes cookies by default after it`s been closed, right?
Comments
@Liath | My PRIMUS Page | Altaholics | New Vehicle Models | New Emblems | Flag Tights
Asterelle's Forum Enhancement Extension | Game Side Panel Add-In* | Game Server Status Add-In
*Updated to work on Embedded/Non embedded forums post August 2015 Changes
Fixed :biggrin: Thanks!
Cheers,
Brandon =/\=
@Liath | My PRIMUS Page | Altaholics | New Vehicle Models | New Emblems | Flag Tights
Asterelle's Forum Enhancement Extension | Game Side Panel Add-In* | Game Server Status Add-In
*Updated to work on Embedded/Non embedded forums post August 2015 Changes
It is my understanding that if you log in on your home computer you can save it to Account Guard and it will remember that location. Now if you log in from a laptop, you will be asked again and you can add the laptop and it will remember. Now if you are at a friends computer, then you will be asked and decline adding it. Now if you do that, you would not be able to login from your friends computer.
Commanding Officer, Strategic Starfleet Operations
I've got two questions for you. Is this something Cryptic has developed internally? If not, can you direct us to the website of the software company who produces the technology so we may learn more about it?
The poster formerly known as LordOfPit, and his blog.
* Dec 2007 (CO)
* Oct 2008 (STO)
Agreed, especially since when I alt-tab out of STO it's hit or miss as to whether I can get back in or if I'll just end up with a small black screen and have to kill the session.
Also, tying the browser part in with cookies is just bad. Those of us who practice "safe computing" regularly delete temporary internet files, which includes cookies. That means any time we clean house, we'll have to generate yet another email with a code.
If we have to do this to just log into the game itself, it will become very old very quickly.
Question: For game login, will this process only affect the initial login for a game session or will it kick in whenever we log out one character and bring in another? I do this quite a bit when doing Duty Officer missions.
I don;t access the net from home. I'm in a dead area with no access. I;m always wireless elsewhere on I believe upwards of 17 different access points during a typical week.
Although always with one of two computers but only one has STO installed.
That;s why I was asking
Edit : Apparently this option is already available. So what's all the crying about? Geeze. Use it or just disable it. I swear some people just search for something new to complain about ... wait its the Forums .. :rolleyes:
That's already in there and I believe was the major issue during the beta. The FAQ linked to up there mentions this.
It's not so much not wanting extra security, but more about what type of security is involved. Cookie-based is less than optimal for the reasons stated in my previous post.
I play two other MMOS, both of which have additional account security features that do not involve cookies or emails with codes in them.
I'll have to see how this shakes out when I log in tomorrow; hopefully it's not as heavily cumbersome as it sounds.
Please tell me that you can;t log in with the same account from two different computers at least/
"Critics who say that the optimistic utopia Star Trek depicted is now outmoded forget the cultural context that gave birth to it: Star Trek was not a manifestation of optimism when optimism was easy. Star Trek declared a hope for a future that nobody stuck in the present could believe in. For all our struggles today, we haven’t outgrown the need for stories like Star Trek. We need tales of optimism, of heroes, of courage and goodness now as much as we’ve ever needed them."
-Thomas Marrone
Not everytime.
When you login to the game normally, you will be prompted for a Code.
The code is emailed to the address you have registered.
Take that code from the email, enter it, and done.
You will not ever have to submit another code if you only play from one computer/IP address.
Registered: Oct/2009 , LTS : Feb/2011
Fleets: Warriors of the Phoenix, Kirian Industries[/SIGPIC]
Three years and still no Captain Klaa hair...
[SIGPIC][/SIGPIC]
Join the STFHelp channel
It doesn't address the type of hack that actually happened to Cryptic's database in the past. Like Windows Vista's UAC, it repeatedly annoys the customer and gives a false sense of security while not actually making the account more secure. And the ten IP address limit in no way makes an account more secure, but it does present a significant risk of permanently locking a paying customer out of their game account if they move or even if their ISP simply changes their dynamic IP address range.
A security key system, like several professionally made MMOs have, is far more secure than this cheap Account Guard. But that would require spending money to implement, and it would also require that someone at PWE have a basic level of competence with computers that the recent forum transition has proven that they simply do not have.
But that would require someone qualified to be smart enough to think of that...
Complaining about complaining? That always works.
I don't want to have anything to do with it.
I can't get to the Main Menu that the F&Q instructions describe in the article...
How about a little more detail in how to disable this BranFlakes ... ???
Or perhaps a LINK ?
Or even...
How about making the F&Q with the Article actually say,
"You Have to Contact CS at this Time to Disable it"
Like it says in the Tribble Forum Thread Post. :rolleyes::rolleyes:
Which means, that one can no longer sign into Tribble or Redshirt without having to use Another FORCED UPON US AGAIN... process...
Jeebus Christmas !!@!
I Was A Trekkie Before It Was Cool ... Sept. 8th, 1966 ... Not To Mention Before Most Folks Around Here Were Born!
Forever a STO Veteran-Minion
I have this issue CONSTANTLY with my banks and have to reverify at least once a week.
This may or may not be a related issue but I will just throw this out since some of you seem informed.....
I run a blocking program a good deal of the time. I have to turn it off when I play ANY game. Except STO. Any other game the launcher wont even connect with it running. Game play is impossible. If I turn it on while in game the game disconnects. But not STO. Launcher works and game plays just fine with little to no lag. I have always wondered what was so special about STO that made it oblivious to security features that bigger name games cant get around.
Nope; you can delete obsolete entries. That eliminates that concern. Edit: actually, it rotates off the oldest; that completely eliminates this concern, unless you've logged on from 10 IPs recently that are no longer under your control *AND* lost your email address. If that happens, you're a serious edge case, and CS can deal with you.
This is a good solution. Keyfobs are better, but they're more expensive. This solution will improve everybody's security, not just those willing to spend money.
Does it fix every possible problem? No. Neither would keyfobs. Security comes in layers, not panaceas.
There seems to be some confusion. These questions and answers should help:
Cheers,
Brandon =/\=
So I have to enter the code everytime, when my browser deletes cookies by default after it`s been closed, right?
That are a lot of e-mails. :rolleyes:
Which is why I couldn't find it on my PWE account page....
Turn it off. That's what I did. I regularly purge my browser, so it would be more annoyance than it's worth.
[SIGPIC][/SIGPIC] "I weary of the chase. Wait for me. I shall be merciful and quick."
If you intentionally configure your browser to make Account Guard annoying, it's likely you'll succeed.