[Cryptography] On the deployment of client-side certs
Jonathan Thornburg
jthorn at astro.indiana.edu
Wed Nov 16 02:46:38 EST 2016
On Tue, Nov 15, 2016 at 11:41:19PM -0800, Tony Arcieri wrote:
> Clearly a dedicated hardware token (or something like the new Apple T1 chip
> + Touch Bar) has better security properties than a smartphone which is
> running user-installable software.
>
> But that's not what I was talking about. I was talking about which one is
> more likely to be adopted. In that regard I think something that runs on
> smartphones will beat a dedicated device any day.
Agreed.
--
-- "Jonathan Thornburg [remove -animal to reply]" <jthorn at astro.indiana-zebra.edu>
Dept of Astronomy & IUCSS, Indiana University, Bloomington, Indiana, USA
"There was of course no way of knowing whether you were being watched
at any given moment. How often, or on what system, the Thought Police
plugged in on any individual wire was guesswork. It was even conceivable
that they watched everybody all the time." -- George Orwell, "1984"
More information about the cryptography
mailing list