[153487] in North American Network Operators' Group
Re: LinkedIn password database compromised
daemon@ATHENA.MIT.EDU (Christopher Morrow)
Thu Jun 7 13:11:25 2012
In-Reply-To: <m2haunjbqi.wl%randy@psg.com>
Date: Thu, 7 Jun 2012 13:09:48 -0400
From: Christopher Morrow <morrowc.lists@gmail.com>
To: Randy Bush <randy@psg.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Thu, Jun 7, 2012 at 1:03 PM, Randy Bush <randy@psg.com> wrote:
> hi etaoin,
>
>> I still don't want single sign on. =A0Not anywhere.
>
> i believe that 'single sign on' is a bad deal and dangerous for all, not
> just we geeks. =A0essentially it means that the 'identiry provider' owns
> your identity. =A0i love that they call themselves 'identity providers'
> when it is MY fracking identity and they are reselling it.
so... now that this can is open, has anyone looked at:
<http://www.oneid.com/>
they seem to have some interesting options for better authentication.
> the 'single sign on' i encourage for the end using human beings i
> support is 1password and its ilk. =A0it provides the user with one sign-o=
n
> yet strongly encourages separation of identities and strong passwords
> for sites.
the oneid people would say: "it is still a shared secret"
-chris
