How would a user be able to use another browser-based or extension-based password manager or similar tool on a public terminal, for instance?
P
> On 23 Dec 2017, at 15:31, Alastair Campbell <acampbell@nomensa.com> wrote:
>
> From: Michael Pluke
> > It appears to pretty much debar all authentication processes that involve user information entry - as whatever they enter either has to be retrieved from the user’s memory or copied (tanscribed) from somewhere. Also I do not see how an authenticaton process can rely on every unspecified user agent being able to enter a user’s personal information (at present, surely, public terminals will certainly not have access to stored user intormation)?
>
> Hi Mike,
>
> It is asking for alternative methods, other than needing to remember/copy things manually. Look at any of the recent threads for example techniques.
>
> It leaves open the ability to use a browser-based / extension for managing usernames/passwords, and says ‘does not block’ them. The content is responsible for not blocking their use, we are not saying every user-agent has to know that information.
>
> Cheers,
>
> -Alastair