[Cryptography] On the deployment of client-side certs

Jonathan Thornburg jthorn at astro.indiana.edu
Wed Nov 16 02:46:38 EST 2016

On Tue, Nov 15, 2016 at 11:41:19PM -0800, Tony Arcieri wrote:
> Clearly a dedicated hardware token (or something like the new Apple T1 chip
> + Touch Bar) has better security properties than a smartphone which is
> running user-installable software.
> But that's not what I was talking about. I was talking about which one is
> more likely to be adopted. In that regard I think something that runs on
> smartphones will beat a dedicated device any day.


-- "Jonathan Thornburg [remove -animal to reply]" <jthorn at astro.indiana-zebra.edu>
   Dept of Astronomy & IUCSS, Indiana University, Bloomington, Indiana, USA
   "There was of course no way of knowing whether you were being watched
    at any given moment.  How often, or on what system, the Thought Police
    plugged in on any individual wire was guesswork.  It was even conceivable
    that they watched everybody all the time."  -- George Orwell, "1984"

More information about the cryptography mailing list