|
Web Application Security
RE: Article - A solution to phishing Nov 26 2004 11:22AM Michael Silk (michaelsilk gmail com) (1 replies) RE: Article - A solution to phishing Nov 27 2004 04:18PM lists dawes za net (4 replies) Re: Article - A solution to phishing Nov 29 2004 01:50PM Joseph Miller (joseph tidetamerboatlifts com) Re: Article - A solution to phishing Nov 27 2004 10:05PM Michael Silk (michaelsilk gmail com) (1 replies) Re: Article - A solution to phishing Nov 30 2004 07:22AM Rogan Dawes (discard dawes za net) (2 replies) Re: Article - A solution to phishing Nov 30 2004 04:08PM Adam Shostack (adam homeport org) (1 replies) Re: Article - A solution to phishing Nov 30 2004 04:08PM Adam Shostack (adam homeport org) (1 replies) Re: Article - A solution to phishing Nov 27 2004 10:05PM Michael Silk (michaelsilk gmail com) (1 replies) Re: Article - A solution to phishing Nov 30 2004 07:22AM Rogan Dawes (discard dawes za net) (2 replies) Re: Article - A solution to phishing Nov 30 2004 04:08PM Adam Shostack (adam homeport org) (1 replies) Re: Article - A solution to phishing Nov 30 2004 04:08PM Adam Shostack (adam homeport org) (1 replies) |
|
|
Privacy Statement |
Hash: SHA1
Why not use an opt-in system where a USB device contains a person's private
key which is used to authenticate to a website? They device is a complete
encryption solution so that the key is never transferred to a computer, but
the website challenges the browser, which challenges the device, which uses
public key encryption to reply. Such a device could also be used to contain
personal information such as name, address, etc. so that automatic
form-fillers in web browsers could be more effective and useful especially
for roaming users.
- -Joseph Miller
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFBqylGmXZROF+EADURAsZNAJ992In6VinjzflweTLxy4Un+VUAxwCfZOK+
9PJUGeOY01ZtOBdjlsKbU+E=
=/l+Z
-----END PGP SIGNATURE-----
[ reply ]