Y
Hacker News
new
|
ask
|
show
|
jobs
by
hinkley
498 days ago
I believe there have been earlier protocols where the user’s secrets were used as a KDF to generate credentials in such a way that the server never sees the user’s password.
I’m wondering if okta was inspired by those.