Re: NSTIC and Passwords

On 10 Jun 2012, at 08:03, Anders Rundgren wrote:

> *<http://www.linkedin.com/groups?viewMemberFeed=&gid=3747110&memberID=3791951&goback=%2Egmp_3747110> *
> 
> http://news.cnet.com/8301-1009_3-57450025-83/linkedin-posts-update-on-password-leaks
> <http://www.linkedin.com/redirect?url=http%3A%2F%2Fnews%2Ecnet%2Ecom%2F8301-1009_3-57450025-83%2Flinkedin-posts-update-on-password-leaks&urlhash=yLJc&_t=tracking_disc>
> 
> It is (to me at least) pretty obvious that NSTIC [1] won't get far unless the technology for authenticating on the Internet takes another major step forward!

I recently argued that one could use WebID for eCommerce in this presentation 
given at the European Identity conference

   http://bblfish.net/blog/2012/04/30/




> 
> Related: Internet payments using credit-cards still rely on "User IDs" (Card Numbers) and "Passwords" (CCVs) printed in clear on the cards.
> 
> Since giant players like FB and LinkedIn as well as the international banking community apparently can't fix this, one wonders how a somewhat obscure government program like NSTIC intends dealing with
> this gaping hole in the arsenal.
> 
> Anders
> 
> 1] http://www.nist.gov/nstic
> 
> 

Social Web Architect
http://bblfish.net/

Received on Sunday, 10 June 2012 06:16:00 UTC