W3C home > Mailing lists > Public > ietf-tls@w3.org > July to September 1996

Re: Repost of CompuServe Position on Passphrases

From: Phil Karlton <karlton@netscape.com>
Date: Thu, 25 Jul 1996 10:55:47 -0700
Message-ID: <31F7B523.2781@netscape.com>
To: Don Schmidt <donsch@microsoft.com>
CC: "'John Macko'" <jmacko@nisa.compuserve.com>, "'Tom Weinstein'" <tomw@netscape.com>, "'ietf-tls@w3.org'" <ietf-tls@w3.org>
> The distinction between whether the application server or the
> authentication authority knows the passphrase is much more than
> semantics.  

Another problem with using passwords is that it almost invariably allows
the administrator of the authentication authority to impersonate any
registered user. It makes accountability highly dubious.

Philip L. Karlton		karlton@netscape.com
Principal Curmudgeon		http://home.netscape.com/people/karlton
Netscape Communications

	This kind of rotor is known as a squirrel-cage rotor
	because the way it's wound is like a bird cage.
Received on Thursday, 25 July 1996 14:03:46 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 20:01:58 UTC