[154042] in North American Network Operators' Group
Re: How to fix authentication (was LinkedIn)
daemon@ATHENA.MIT.EDU (Christopher Morrow)
Thu Jun 21 22:53:50 2012
In-Reply-To: <m2vcik6oz4.wl%randy@psg.com>
Date: Thu, 21 Jun 2012 22:53:18 -0400
From: Christopher Morrow <morrowc.lists@gmail.com>
To: Randy Bush <randy@psg.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Thu, Jun 21, 2012 at 10:48 PM, Randy Bush <randy@psg.com> wrote:
>> That's basically the Yubikey. It uses a shared key, but since you're
>> relying on a trusted third party anyway
>
> there are no trustable third parties
note that yubico has models of auth that include:
1) using a third party
2) making your own party
3) HOTP on token
4) NFC
they are a good company, trying to do the right thing(s)... They also
don't necessarily want you to be stuck in the 'get your answer from
another'
-chris
