[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

How to fix authentication (was LinkedIn)

Subject: How to fix authentication (was LinkedIn)
From: jra at baylink.com (Jay Ashworth)
Date: Wed, 20 Jun 2012 19:26:45 -0400 (EDT)
In-reply-to: <[email protected]>

----- Original Message -----
> From: "Leo Bicknell" <bicknell at ufp.org>

> SSL certificates could be used this way today.
> 
> SSH keys could be used this way today.
> 
> PGP keys could be used this way today.
> 
> What's missing? A pretty UI for the users. Apple, Mozilla, W3C,
> Microsoft IE developers and so on need to get their butts in gear
> and make a pretty UI to create personal key material, send the
> public key as part of a sign up form, import a key, and so on.

Yes, but you're securing the account to the *client PC* there, not to
the human being; making that Portable Enough for people who use and
borrow multiple machines is nontrivial.

Cheers,
-- jra
-- 
Jay R. Ashworth                  Baylink                       jra at baylink.com
Designer                     The Things I Think                       RFC 2100
Ashworth & Associates     http://baylink.pitas.com         2000 Land Rover DII
St Petersburg FL USA      http://photo.imageinc.us             +1 727 647 1274

Follow-Ups:
- How to fix authentication (was LinkedIn)
  - From: kyle.creyts at gmail.com (Kyle Creyts)
- How to fix authentication (was LinkedIn)
  - From: drew.weaver at thenap.com (Drew Weaver)
- How to fix authentication (was LinkedIn)
  - From: aaron at heyaaron.com (Aaron C. de Bruyn)

References:
- LinkedIn password database compromised
  - From: bicknell at ufp.org (Leo Bicknell)

Prev by Date: SIXSS not working?
Next by Date: How to fix authentication (was LinkedIn)
Previous by thread: LinkedIn password database compromised
Next by thread: How to fix authentication (was LinkedIn)
Index(es):
- Date
- Thread