[153991] in North American Network Operators' Group
Re: LinkedIn password database compromised
daemon@ATHENA.MIT.EDU (Leo Bicknell)
Wed Jun 20 17:40:13 2012
Date: Wed, 20 Jun 2012 14:39:14 -0700
From: Leo Bicknell <bicknell@ufp.org>
To: "nanog@nanog.org" <nanog@nanog.org>
Mail-Followup-To: "nanog@nanog.org" <nanog@nanog.org>
In-Reply-To: <41F6C547EA49EC46B4EE1EB2BC2F34184B11F80D76@EXVPMBX100-1.exc.icann.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
--k+w/mQv8wyuph6w0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
In a message written on Wed, Jun 20, 2012 at 02:19:15PM -0700, Leo Vegoda w=
rote:
> Key management: doing it right is hard and probably beyond most end users.
I could not be in more violent disagreement.
First time a user goes to sign up on a web page, the browser should
detect it wants a key uploaded and do a simple wizard.
- Would you like to create an online identity for logging into web
sites? Yes, No, Import
User says yes, it creates a key, asking for an e-mail address to
identify it. Import to drag it in from some other program/format,
No and you can't sign up.
Browser now says "would you like to sign up for website 'foobar.com'",
and if the user says "yes" it submits their public key including the
e-mail they are going to use to log on. User doesn't even fill out
a form at all.
Web site still does the usual e-mail the user, click this link to verify
you want to sign up thing.
User goes back to web site later, browser detects "auth needed" and
"public key foo" accepted, presents the cert, and the user is logged in.
Notice that these steps _remove_ the user filling out forms to sign up
for simple web sites, and filling out forms to log in. Anyone who's
used cert-based auth at work is already familiar, the web site
"magically" knows you. This is MUCH more user friendly.
So the big magic here is the user has to click on "yes" to create a key
and type in an e-mail once. That's it. There's no web of trust. No
identity verification (a-la ssl). I'm talking a very SSH like system,
but with more polish.
Users would find it much more convenient and wonder why we ever used
passwords, I think...
--=20
Leo Bicknell - bicknell@ufp.org - CCIE 3440
PGP keys at http://www.ufp.org/~bicknell/
--k+w/mQv8wyuph6w0
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.18 (FreeBSD)
iQIVAwUBT+JDArN3O8aJIdTMAQJC6A//dRjZi8PBZZuKNjN1mJA0VBG//CFia5Nx
oJlXvU7lLDf5covpy5qX52xSS8O+NKQL7KBKrhX3KW/KNpB2hZ/izGhPfUQFo6nz
Yq2TqG3JvWlxVutKn92TVAJYHclpg0InfNfU02wqlbnmHnd3G1KbwkCG8b0/B4+j
CHriLYnvRp8X5Gfr29VdfGBZYouDZBJht3LMq9vQtTv0gEu/EX6w3JDQIbXW7jnN
8MLkqTVcGnU1YldrxJXqI+VId2TqB0yU1rr/q6mKRllo5CR1s80Jw48bLeoxK7VB
2YUEP5yKgNWr7T7pjlaUOEocnid+dYQ9fnDDBkThp8uSiZLx4It4of1cSIGknF1D
xE9PAe9EHEZTs/HxOdHFfvCA9H1Blktjy7Sw1pdQxZlc+FOEEjMjGMDee/oXsUKv
fYmiZS19JnkNQg3oKIEEsZ2bxPhkDtqt7VpBLg3YC3DHPfNdDxKgRur4wzvf8K8B
+Kov1Icy9nkCGXtbb5l8nTsNVogmWVOhjSZLtXEkYaU1Taoodm0+Mh57w6K0UW2N
GI2BkUBYjq+p7LPoaxQZKE/eaIf/6BQeOePfwvYkQhp4HAqZaTU6WwinBBryZ3ag
jPl4d3OseegdQJpbo915oCnxfFDJublYM/mUPyN9O6xNz2hamRU/bOV/G05oUeoz
8fc2cMqgRXA=
=qWvk
-----END PGP SIGNATURE-----
--k+w/mQv8wyuph6w0--
