- 01-11-2013, 07:53 AM #1
Before portico, if I had a password on my lock screen I would have to enter in my password for kids corner, which kind of defeated its purpose in my opinion. After I updated to portico however, I have a password on my home screen but swiping across to kids corner , i can now access it without entering my password. I'm so happy! I use kids corner for my games and music. Its so cool because I don't need to clutter my home screen now :)
- 01-11-2013, 08:29 AM #3
No, I have this problem. If I set my phone with a passcode, it still requires the passcode for Kid's Corner. That's awesome. They wasted like 30 mins demoing this crap at the official WP8 revealing, instead of focusing their efforts on important features. It probably took them long to release WP8 because kid's corner was taking too long, instead of focusing their efforts on IMPORTANT things...
I swear I lose more faith everyday. Dumb stuff like this...
- 01-18-2013, 06:02 PM #6
There is no change and it works as it was designed, just not as many folks want it to.
Kid's Corner has one goal: to let non-owners of a phone request permission of the owner to access and use a subset of the phone's apps and data. Once the owner grants permission, the other user can play around and turn the screen off/on without the password, as long as the password inactivity timeout doesn't expire. (If your timeout is 15 minutes, your kid can play for 20 minutes, put down the phone to go to the bathroom, and come back 12 minutes later without needing you to re-unlock it because the 15-minute inactivity timeout didn't expire.)
A password is placed on a phone to prevent unauthorized people from using the phone. Many people who have passwords on their phones have them because their employer-provided email pushed an Exchange ActiveSync security policy to the phone and that policy mandated a password. Such policies are generally placed to product records that the company lets the employee access and to limit the legal liability of the employer. With appropriate policies in place (typically a password, inactivity timeout, and device encryption), employers may be able to escape disclosure notices and financial penalties in the case of a potential data breach (i.e., a lost phone containing or accessing company data).
Imagine if a user puts into Kid's Corner an app that accesses company data, that Kid's Corner is allowed to bypass the password, and that the phone is lost. Whoever finds the phone has access to private data (maybe it's your medical records, my financial records, or your kid's educational records). Because the user was allowed to bypass the security settings, the company cannot in good faith say that the data it held had remained confidential. A variety of federal and state laws now require the company to find out whose data was potentially lost, to contact them all to warn them of potential identity theft, often to pay for them to have a credit watching service for 1-3 years, and to sometimes pay fines to various state governments. And that's before anyone decides to sue.
It's in this context that a user's desire to let his or her kids play without asking permission first loses out to the cost of a data breach (a recent lost laptop case that I know had a $10M cost estimate). I can't imagine anyone in health care, financial services, or education (which all have breach disclosure laws to content with) approving the use of a device that could not be secured. The fact that you personally don't have such concerns doesn't mean that Microsoft can allow password bypass because none of the businesses needing protection would be able to trust such a device.
- 01-18-2013, 07:00 PM #7
- 01-19-2013, 09:29 AM #10
It seems like with Portico, my kids corner prompts less often for a password than it did before, but still does on occasion. That may just be me being crazy though, who knows.
- 01-19-2013, 03:35 PM #12
- 01-19-2013, 03:40 PM #13
Likewise, if Kid's Corner is used, a password is needed to get in to the main part of the phone. The logic here is the use of Kid's Corner means that the phone was in the hands of someone who isn't the owner. Requiring the password ensures that your kids or friends don't bypass security by entering Kid's Corner, turning off the screen, turning it on again, and swiping up to get directly to the phone.
The entirety of the "problem" that some people have with Kid's Corner is that they want a feature that allows implicit authorized use by others. Microsoft designed a system that requires explicit authorization by making the owner key in the PIN to begin a Kid's Corner session.
- 01-19-2013, 06:42 PM #14
1. Set your phone to require a passcode each time you put your phone on sleep mode.
2. Put your phone to sleep and swipe over to Kid's Corner.
3. Put in the passcode to access Kid's Corner again, then put the phone to sleep.
4. Swipe back to Kid's Corner and it still requires the passcode, even though you put the passcode in the 1st time and obviously gave permission the 1st time.
That's my issue with Kids corner. I can't have my phone passcode protected each time the phone goes to sleep without having to enter it in EACH TIME I put my phone to sleep after granting access to Kid's Corner the first time...
01-19-2013, 08:23 PM #15
- 291 Posts
- 01-19-2013, 09:11 PM #17
Just look at the way Microsoft demos it - kid wants to play on parent's phone, parent gives phone to kid, kid does it all independently - swipes left and swipes up.
The whole idea is for others to access that subset without requiring you to be hovering around and policing their actions.
- 01-20-2013, 07:05 AM #18
@AngryNil: I believe that it's already been said on another thread that Joe keyed in his PIN backstage at the WP8 launch event. For the reasons described above, what you want presents a security risk that many companies would not accept.
@jrdatrackstar1223: Go into the Lock Screen settings, scroll to the bottom, and check your "Require a password after" setting. If it is set to "each time," you'll get the behavior that you describe. If you set it to something longer (like 15 minutes), your kids will be able to turn the screen off/on and swipe back into Kid's Corner without needing the PIN (i.e., the owner's permission) again.
If you're thinking that setting a long "Require a password after" timeout defeats the purpose of security and rending my earlier rant about unacceptable risk of losing medical, financial, or other protected data, you should be right, but you're wrong. Although a thief could steal your phone and access your data indefinitely provided that he 1) did it quickly after you used it, 2) kept the phone charged, and 3) used it every few minutes, the lawyers who practice in this area still say that the phone can be accepted as "secure" with a timeout and can't be without one. This is clearly an area where the law and the technology disagree or where the law is looking at what's likely rather than what's possible.
- 01-20-2013, 05:05 PM #21
- By zonoskar in forum Windows Phone 8Replies: 56Last Post: 06-06-2014, 10:25 AM
- By martinmc78 in forum Microsoft Surface for Windows RTReplies: 1Last Post: 11-23-2012, 08:07 AM
- By scumdogmillionaire in forum Windows Phone 8Replies: 2Last Post: 11-10-2012, 07:33 PM
- By cp2_4eva in forum Windows Phone 8Replies: 2Last Post: 11-08-2012, 05:14 PM
- By Jf.Vigor in forum Windows Phone 8Replies: 2Last Post: 10-19-2012, 12:36 PM