[Cryptography] password fatigue; was: Lastpass
Michael Kjörling
michael at kjorling.se
Sun Jun 21 16:57:56 EDT 2015
On 21 Jun 2015 13:21 -0700, from huitema at huitema.net (Christian Huitema):
>> If we are dreaming up new (exterior) hardware designs anyway, then why
>> not make it such that it has a USB port (allowing any old USB cable to
>> connect it to a computer), presents itself to the host as a HID device
>> acting as a keyboard (much like a Yubikey does) and has a physically
>> triggered action to send data selected in its software to the host?
>
> USB or Bluetooth would both work. You can probably implement a
> prototype with a phone app that stores the passwords and pushes them
> on demand through Bluetooth.
Far from all systems have Bluetooth hardware. Particularly, it is
uncommon on desktop systems. While laptops are common in many
settings, pure desktop systems still serve a large, legitimate niche
even in new installations.
The idea with using wired USB was to force the user to make an
informed decision to have the device interact with _the intended
system_, and not some other one that merely happened to be in radio
receiver range at the time.
--
Michael Kjörling • https://michael.kjorling.se • michael at kjorling.se
OpenPGP B501AC6429EF4514 https://michael.kjorling.se/public-keys/pgp
“People who think they know everything really annoy
those of us who know we don’t.” (Bjarne Stroustrup)
More information about the cryptography
mailing list