On 21/05/2017 16:56, John Denker via cryptography wrote: > Why not just migrate to zero-knowledge password > proofs and be done with it? How much easier than the latest password non-fix would it be to write a public key implementation and just label it 'advanced password' for those who can't shake their addiction? iang