|
|
|
|
|
|
by chimeracoder
4673 days ago
|
|
|
Agreed. For those who missed it before, from a previous discussion on Authy: > You're correct - there are serious security concerns with Authy's product, which were pointed out on an earlier HN thread: https://news.ycombinator.com/item?id=4916983 >Personally, I'd be concerned with trusting my credentials with any company unless all members of the leadership team (yes, including "nontech" people) are incredibly familiar with basic security terminology and practices. > (Note that the founder is unclear when PBKDF2 and AES are being used in the product, which is concerning, because they have very different use cases and should be hard to confuse). (http://news.ycombinator.com/item?id=6133648) |
|
|