BoardsGameplay

User Account Two Step Sign-in - League of Legends client

memomymo·12/4/2017, 10:12:00 PM·2 votes·357 views

Hello Riot

It's memomymo.

I have a suggestion that may prove critical by the user experience process and client security. I have played league of legends for many years. Throughout those many years i have played league of legends, I have noticed the external and internal security risks associated with being online. For example, a user's local internal PC settings could create a vulnerability for open access, and this event could be caused by failure to update and other configuration settings. Unaware of the security risk, the user conducts his or her personal business on the PC. In doing so, an unknown advance external PC user could take advantage of the available opportunity for malicious intent. For example, obtain user name and passwords for social media. i.e Facebook, Twitter, ... Another example would consist of gaining access to e-mail accounts. i.e. gmail, outlook, ... I have a solution. To prevent such a malicious opportunity event to take place in real time, I suggest Riot include a "two step log in process". The first step would consist of opening the client and entering the user name and password. The second step process involves the user's mobile device. The user's mobile device would be used to receive a log in access code for the log-in attempt session. An authencation code for permission to gain access to the user's account. If the user has his or her proper credentials, access is granted. However, if the user, probably unknown and malicious, does not have the proper credentials, denied access is the outcome. In doing so, the user's e-mail account and mobile device will receive a log-in attempt for granted access and or denied access. The great benefit each user would receive is the ability in real time to access to his or her account. For example, another unknown user using the account without permission. If the unknown user has authorize access to another user's account, the user would receive the follow.

Date: ##/##/#### Time: ##:## (24hours) or ##:## (AM/PM) IP Address: ###.###.###.### Country: ############ ISP Provider: ###########

Users should use a two step sign-in process that way every time the user would have to sign-in by entering the user name and password. Also the user would receive an authencation code to his or her mobile device. So even if the unknown user steals the username and password, the unknown user does not have physical access to the mobile device. As a result, the user's account is secured.

Please Riot, get it done!

Sincerely,

memomymo December 4, 2017

3 Comments

Ben Creature12/4/2017, 10:18:14 PM1 votes

Interesting Idea, I like it!

HalcyonDweller12/4/2017, 10:21:07 PM1 votes

Lengthy, but true.

Two-step Authentication would be fantastic for improving game security and cracking down on account theft.

omniblaze12/5/2017, 1:42:24 AM1 votes

optional of course but the option has merits for people who care about their account