[Cryptography] "password manager" --> _authorization manager_
Maarten Billemont
lhunath at lyndir.com
Tue Aug 19 13:36:50 EDT 2014
On Aug 17, 2014, at 8:42 AM, Paul Madore <henrypaulmadore at gmail.com> wrote:
> As to passwords, what about a two step auth system which involved both password and possession of a data file.
As an aside, can we really call it two-factor when both elements are knowledge factors (AFAIK, a data file is also considered such)? Seeing as most attacks that capture the password can trivially also capture the data file.
— Maarten Billemont (lhunath) —
me: http://www.lhunath.com – business: http://www.lyndir.com – http://masterpasswordapp.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20140819/ba73526d/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4136 bytes
Desc: not available
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20140819/ba73526d/attachment.bin>
More information about the cryptography
mailing list