Is Duo Push inconvenient or a necessary security measure?

Picture this: You’re already late to class when you realize you forgot to print out an assignment that’s due today. You book it to the Lib, grab a computer, and log in to Canvas. Until you're stopped with good old Duo Push. You grab your phone, and it's dead. 

 

If you're new here, Duo Push is a new double authentication security measure that Sonoma State has put in place to supposedly protect staff and student accounts from hackers. While the thought and effort is there, this security measure is proving to be more aggravating than helpful. 

Basically, the Duo Push app allows you to verify every single login on your Sonoma State account. While that may not seem terrible, it is several unnecessary steps that are required every single time you log in, even if you're already logged in on a different platform. 

 

The main complaint students had with Duo Push was the fact that you must verify yourself on the mobile app. Most websites these days that use two-factor authentication have ways that make it easier on the user to verify themselves while still ensuring security. Duo Push requiring the user to open the app and verify through their server is nothing short of exasperating. 

 

On top of all this, if you happen to forget your mobile device at home or it’s dead and you can’t charge it, forget logging on to Canvas. If you’re caught in this dilemma, the IT help desk provides a one-time code to use.

The general consensus from students regarding Duo Push is that it’s inconvenient and not worth the trouble. Damien Wall, a junior Earth sciences major said, “So unnecessary, you’re telling me if my phone’s dead, I cant get my assignments done.” 

Graduate student Isaiah Usher said, “It’s God awful. If these are the responses from several students, it’s easy to assume most students likely feel the same way. 

 

Two factor authentications are becoming more and more common across all platforms. However, most of those authentications make it easy to verify yourself while only requiring use of one device. Duo Push’s need for the second device to verify your authentication wastes valuable time and energy. The alternative to Duo Push would be a simpler two factor authentication program. This would ensure that the students who want that added security get it, and those that don’t, don’t. 

 

While Duo Push seems to be a widely disliked new change, a few students did seem to have some appreciation for the program’s added security. Jon Burgess, a third year Business major said, “Duo is incredibly annoying when you need to access your Sonoma account quickly, but all other times I don’t mind because I usually have my phone next to me.” He continued, “Modern single step passwords are very weak, and I enjoy having all of my valuable information safe and only accessible through myself with the two-step authentication.” 

Another student, who asked to remain anonymous, said, “I got hacked on my Yahoo email account last year and ever since then I’m super aware of my accounts and I’ve been using Duo for all my compatible accounts.”

 

Everyone appreciates having the ability to choose the way they like to do things. Some don’t mind using Duo Push, some love it and use it for other accounts, and some people just hate it. With all the different feelings associated with this new way to log in, one might think it would be simple to allow the students a choice in using Duo Push or not.