[foaf-protocols] Google Brings Two-step Authentication to Google Apps

Henry Story henry.story at bblfish.net
Mon Sep 20 15:20:38 CEST 2010


On 20 Sep 2010, at 15:04, Nathan wrote:

> Henry Story wrote:
>> Thanks for pointing this out. I have been suggesting for a while that doing this with WebID would be a good idea as a way to get security and allow you to have any number of keys for each browser. When you use a public terminal have the server send you
>> an SMS for a one time login.
> 
> Will a public terminal let you install a new certificate in the user agent (given that often you are dealing with windows+ie which uses local certificate store)?

Something to investigate. I had no trouble creating a cert on Windows with Clerezza on a public terminal on IE7 I think

> how would you know when to expire certificate / teach users to remove the temp certificate? or am I misunderstanding something,

You can create certificates for limited time. They can also send an SMS to the server to disable it.
Would just be a reply to action.

Henry

> 
> Best,
> 
> Nathan

Social Web Architect
http://bblfish.net/



More information about the foaf-protocols mailing list