|
|
|
|
|
|
by djao
814 days ago
|
|
|
Even if you use a scheme where the password never traverses the wire, the schemes still require the server to know what your password is in order to perform the authentication. So a compromised server still leads to compromise of your secret credential. Public key authentication does not have this property. |
|
|