> On 17 Oct 2018, at 17:39, Grant Taylor via cctalk <cctalk@classiccmp.org> > wrote: > > Remember that it is possible to spoof or hijack SMS / phone numbers. So > don't rely on just that for security.
Good point. As far as I can tell, there's no way of securing communications with a purely SMS-based approach. Maybe voice fingerprinting and authentication for each request..? I can already smell feature creep.
