W3C home > Mailing lists > Public > public-identity@w3.org > June 2012

Re: NSTIC and Passwords

From: Henry Story <henry.story@bblfish.net>
Date: Sun, 10 Jun 2012 08:15:22 +0200
Cc: "public-identity@w3.org" <public-identity@w3.org>
Message-Id: <43B7E610-2D94-4D87-A5FF-8E6093D9353B@bblfish.net>
To: Anders Rundgren <anders.rundgren@telia.com>

On 10 Jun 2012, at 08:03, Anders Rundgren wrote:

> *<http://www.linkedin.com/groups?viewMemberFeed=&gid=3747110&memberID=3791951&goback=%2Egmp_3747110> *
> 
> http://news.cnet.com/8301-1009_3-57450025-83/linkedin-posts-update-on-password-leaks
> <http://www.linkedin.com/redirect?url=http%3A%2F%2Fnews%2Ecnet%2Ecom%2F8301-1009_3-57450025-83%2Flinkedin-posts-update-on-password-leaks&urlhash=yLJc&_t=tracking_disc>
> 
> It is (to me at least) pretty obvious that NSTIC [1] won't get far unless the technology for authenticating on the Internet takes another major step forward!

I recently argued that one could use WebID for eCommerce in this presentation 
given at the European Identity conference

   http://bblfish.net/blog/2012/04/30/




> 
> Related: Internet payments using credit-cards still rely on "User IDs" (Card Numbers) and "Passwords" (CCVs) printed in clear on the cards.
> 
> Since giant players like FB and LinkedIn as well as the international banking community apparently can't fix this, one wonders how a somewhat obscure government program like NSTIC intends dealing with
> this gaping hole in the arsenal.
> 
> Anders
> 
> 1] http://www.nist.gov/nstic
> 
> 

Social Web Architect
http://bblfish.net/
Received on Sunday, 10 June 2012 06:16:00 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Sunday, 10 June 2012 06:16:00 GMT