|
|
|
|
|
|
by 6d0debc071
4795 days ago
|
|
|
IP checking's not necessarily going to help. If I get your passwords, I'm going to try them with every site I know about in a matter of seconds. Public key crypto does seem to be a better solution - I've heard it proposed a number of times among security people now. And it has some nice features even when you assume that user computers are still vulnerable to attack. • It seems to be a harder problem to hack all the users of a service than it is to hack the service itself • If you abstract the public key stuff into the browser nothing would change in that regard. You can use different passwords packaged with your key. Personally I don't think it's worth the bother if you assume that people tend to use the same passwords but... whatever. • You could do all the crypto on a token and use interface controllers to reduce your attack surface there. The difficult bit, as far as I can tell at the moment, is that it requires people to know that there's a file they need to keep safe if they want to hang onto their accounts. I really think you'd need a physical token to get it down to the level that many people are capable of understanding, and then you'd better pray they don't lose it.... If we're gonna trend that way, we add complexity - and that's not going to get people to adopt. |
|
|