Friam

Fwd: Two-factor Authentication

Classic

List

Threaded

2 messages Options

Owen Densmore

Fwd: Two-factor Authentication

Administrator

Another 2-factor authentication:

https://github.com/blog/1614-two-factor-authentication

Interestingly, they can use the android/ios authenticator app for the second pin, rather than, or in addition to, a SMS.

This apparently is possible due to a time based protocol: The protocol for this system is called Time-based One-Time Password, or TOTP.

Thus we are edging towards having a single 2-factor authenticator app, rather than one per site.

But .. isn't this yet another single point of failure?

-- Owen

============================================================
FRIAM Applied Complexity Group listserv
Meets Fridays 9a-11:30 at cafe at St. John's College
to unsubscribe http://redfish.com/mailman/listinfo/friam_redfish.com

Marcus G. Daniels

Re: Fwd: Two-factor Authentication

On 9/3/13 6:57 PM, Owen Densmore wrote

Thus we are edging towards having a single 2-factor authenticator app, rather than one per site.

Apparently mobile Windows 8.1 devices will require a TPM 2.0 module, and there are various sorts of mobile secure execution environments evolving -- ARM TrustZone, etc. new Nokia phones, MS Surface, etc. come equipped with TPM interfaces.

Ok, no doubt this stuff will be most used to protect corporate intellectual property and reduce the utility of general purpose computers, rather than ensure individual privacy and liberty, but one can always hope.

It would be nice to have standard software & hardware could be used to generate keys. I'm sure tired of carrying around N different sorts of secure IDs. Need cargo pants for enough pockets.

Marcus

============================================================
FRIAM Applied Complexity Group listserv
Meets Fridays 9a-11:30 at cafe at St. John's College
to unsubscribe http://redfish.com/mailman/listinfo/friam_redfish.com