How would a user be able to use another browser-based or extension-based password manager or similar tool on a public terminal, for instance? P > On 23 Dec 2017, at 15:31, Alastair Campbell <acampbell@nomensa.com> wrote: > > From: Michael Pluke > > It appears to pretty much debar all authentication processes that involve user information entry - as whatever they enter either has to be retrieved from the user’s memory or copied (tanscribed) from somewhere. Also I do not see how an authenticaton process can rely on every unspecified user agent being able to enter a user’s personal information (at present, surely, public terminals will certainly not have access to stored user intormation)? > > Hi Mike, > > It is asking for alternative methods, other than needing to remember/copy things manually. Look at any of the recent threads for example techniques. > > It leaves open the ability to use a browser-based / extension for managing usernames/passwords, and says ‘does not block’ them. The content is responsible for not blocking their use, we are not saying every user-agent has to know that information. > > Cheers, > > -Alastair
Received on Saturday, 23 December 2017 17:05:29 UTC