The Church has a robust Information Technology (IT) department, quite unlike the one depicted in the Netflix show “The IT Crowd” (highly recommended). Gone are all the paper forms I used to fill out as Bishop, such as missionary applications, BYU ecclesiastical endorsements, Report of Disciplinary Council, Request for sealing cancellation, etc. These and all the rest are now online.
There has yet to be a data breach where the information was shared online. Everything from new bishop recommendations to the above mentioned Report of Disciplinary Council (probably has a different name now) would have very personal information, that could be very embarrassing to not only the individual, but to the local leaders, and the Church as an institution if it was hacked.
Yet, everybody from a Bishop to the Q15 has access to this restricted personal information by means of a password! And even more so for the Q15, who with the click of a computer key can approve a sealing cancellation, deny a request for re-baptism, or approve a Mission President/Bishop Stake President calling.
I have wondered what the Q15 use for their passwords. They must have one for all their church work, that allows them to log onto their computer from anywhere in the world. Do you think they have a real computer generated random password like we are told to use, like
b%fdu73*$2? And if they did have one like that, they would then have to write it down (a big no no!), maybe on the back of their Temple Recommend?
What if they use two factor authentication, which is something you have (a physical object) and something you know. Maybe they use their bar coded Temple recommend to slide into a reader on their computer, and then enter another password?
What if they got to come up with their own passwords? What are your guesses? Here are mine
Pres Nelson: tHe#1Holyone$
Pres Oaks: tHE*enforcer#2
Pres Eyring: 2nDAn0inTED
Elder Bednar: D0ntsTandB4ME
Elder Uchtdorf: IMgODsCOpILOT
Elder Holland: nOtaD0D0RU?
Bro Jergensen (Church Auditing Department): n0thing2cHere
What kind of login security do you think they have? Passwords, or a maybe a password token (in all white of course) that generates a one-time code? Your thoughts?