Re: Kiosk access - Solved from Kingsley Idehen on 2014-06-02 (public-webpayments@w3.org from June 2014)

From: Kingsley Idehen <kidehen@openlinksw.com>
Date: Mon, 02 Jun 2014 17:24:17 -0400
To: public-webpayments@w3.org
Message-ID: <538CEB81.3080808@openlinksw.com>

On 6/2/14 1:50 AM, Anders Rundgren wrote:
> Hi List;
> One of the arguments against using authentication techniques that rely
> on client-side storage of data like PKI is that it wouldn't work at a 
> kiosk
> unless the key was supplied in a smart card or similar, right?
>
> I think we can safely ignore this objection because with a mobile device
> which now is in the hands of many more people than PCs, the device
> itself = key storage.
>
> Slightly further down the road the device will also be able to wirelessly
> "roam" into the kiosk/ATM/POS/whatever but that won't happen until the
> keys are safely and conveniently stored and managed in the mobile device.
>
> Currently key enrollment is performed through proprietary methods 
> since the
> mobile OS vendors haven't fully understood this use-case yet.  Do they 
> ever
> talk to EU or Asian banks?  Probably not.
>
> In Sweden the banks have launched an ID-App which can be used both 
> "as-is" or
> as a stand-alone "PC-companion" where you initiate an authentication 
> on the PC
> and then meet that request with the mobile ID-App.   It has 
> effectively become
> the Swedish version of the electronic ID-card, not relying on 
> non-existing browser
> support and quirky card middleware.
>
> I developed a more universal version of this a year ago where the PC 
> part is using
> QR-code which unlike the banks (hard-coded single-provider 
> solution...) isn't secret:
> https://openkeystore.googlecode.com/svn/resources/trunk/docs/QR-ID-presentation.pdf 
>
> https://play.google.com/store/apps/details?id=org.webpki.mobile.android
>
> thanx,
> Anders 
Anders,

Do I still need to have a G+ account to use this app? If so, why is that 
the case?

-- 

Regards,

Kingsley Idehen	
Founder & CEO
OpenLink Software
Company Web: http://www.openlinksw.com
Personal Weblog: http://www.openlinksw.com/blog/~kidehen
Twitter Profile: https://twitter.com/kidehen
Google+ Profile: https://plus.google.com/+KingsleyIdehen/about
LinkedIn Profile: http://www.linkedin.com/in/kidehen

Attachments

application/pkcs7-signature attachment: S/MIME Cryptographic Signature

Received on Monday, 2 June 2014 21:24:44 UTC