How to fix authentication (was LinkedIn)

Christopher Morrow morrowc.lists at gmail.com
Fri Jun 22 02:53:18 UTC 2012


On Thu, Jun 21, 2012 at 10:48 PM, Randy Bush <randy at psg.com> wrote:
>> That's basically the Yubikey. It uses a shared key, but since you're
>> relying on a trusted third party anyway
>
> there are no trustable third parties

note that yubico has models of auth that include:
  1) using a third party
  2) making your own party
  3) HOTP on token
  4) NFC

they are a good company, trying to do the right thing(s)... They also
don't necessarily want you to be stuck in the 'get your answer from
another'

-chris




More information about the NANOG mailing list