- πΊπΈUnited States cmlara
Is there any data around the usefulness of this in the modern world with highly mobile devices?
My initial gut reaction is "not a bad idea" though my deeper analysis is "how often will site owners actually be able to utilize this?"
With features such as Apple Cloud Privacy Relay, factored atop rapid cellular IP address changes, it starts to feel like this may not be as useful as it once was as now site owners may expect users to frequently change IP addresses.
Random IPv6 addresses (where the same device may change its address on its own volition within the same local network assignment) are becoming more relevant now as IPv6 continues to roll out and privacy modes have become the default with the intent to prevent tracking.
The positive here is this proposal would not result in a user being logged out of their session, just that they would be compelled to provide an OTP again when the session expires.
The feature concept is initially solid, I just question is there enough user base to justify adding it as code to maintain?
Using myself as an example:
I have access to a couple 'stable' IPv4 addresses and IPv6 addresses (not necessarily static though rarely changing) as well a significant number of un-stable addresses (Cellular IPv4 & IPv6, Random IPv6 on networks where I have not disabled wifi privacy). On any given day I cross at least 4 IP addresses on just a single device. I wouldn't be surprised if I routinely crossed through significantly more.Factor in network uplink problems (IPv6 down yet IPv4 up or vice versa) and even on a 'static' network with Privacy disabled I can cross through two different IP ranges.
Not closing the issue as there is room for discussion here.