Apple has begun emailing iCloud users who have enabled two-factor authentication on their Apple IDs, reminding them that application specific passwords will be required when trying to access iCloud data on third party apps starting tomorrow.
In addition to the email reminders, Apple last week published a new support document educating users on how to use app-specific passwords. While the feature was originally intended to require the feature on October 1, it's unclear why two-factor authentication users are being reminded of it a week later.
App-specific passwords are a new feature Apple introduced in mid-September, following the launch of two-factor authentication for accessing iCloud.com. The changes arrived after a hacking incident that saw the iCloud accounts of several celebrities compromised due to weak passwords.
CEO Tim Cook has promised to improve iCloud security by increasing awareness around Apple's security features like two-factor authentication as well as a sending out email notifications whenever a device is restored, an account is accessed or a password change is attempted.
Top Rated Comments
When I read that email, I immediately though "Dammit that sounds so inconvenient" but I took a few steps back and realized how helpful that will be. I appreciate Apple's multiple levels of security:apple::cool:
Oh kid, welcome to life, if there's something that doesn't work at 100% all the time are computers, you are going to have a bad life thinking computers should work (1 - 10^(-9000))*100% of the time.
Welcome to the real world, you can complain all you want, but technology has it flaws..
This is basically how gmail works because 3rd party apps have no cookie mechanism & challenge follow-up. You need app specific passwords.
Apple's implementation is exactly like Google except you have more trusted device than SMS.
This is an industry-wide and fairly secure solution, used by the likes of Google, Microsoft, and Yahoo.
If you want third party apps to have access to your iCloud account (eg. Outlook), you create a specific password for Outlook to use.
The app does not know your real iCloud password, and you can revoke the app specific password if you want to.