|
|
|
|
|
|
by jermy
4994 days ago
|
|
|
Video at http://blogs.rsa.com/idp-beat/announcing-rsa-distributed-cre... Any suggestions of what might be worth $150,000 in all of this? At a basic end, this seems to be similar to storing every other character of a suitable hash on two nodes (preferably running heterogeneous architectures). RSA's ability to 're-randomise' suggests the ability for the two machines to be able produce a plaintext version of the password, which obviously seems particularly dangerous, especially if somebody is sloppy and backs up both nodes to the same location. Is there any distributed encryption algorithm that could be done that would allow straightforward credential verification as well as the ability to re-salt a hash securely without knowing the plaintext? |
|
|