BLU Discuss list archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Discuss] Steve Gibson's SQRL

Subject: [Discuss] Steve Gibson's SQRL
From: warlord at MIT.EDU (Derek Atkins)
Date: Wed, 25 Feb 2015 12:01:41 -0500
In-reply-to: <CAAbKA3XqSKRcgnVDZk1TV47a-E4z7NX98K9-BJC1KymtTdQSbQ@mail.gmail.com> (Bill Ricker's message of "Wed, 25 Feb 2015 08:57:27 -0500")
References: <54ED34F4.4060909@gmail.com> <54EDD214.9000608@gmail.com> <CAAbKA3XqSKRcgnVDZk1TV47a-E4z7NX98K9-BJC1KymtTdQSbQ@mail.gmail.com>

Bill Ricker <bill.n1vux at gmail.com> writes:

> On Wed, Feb 25, 2015 at 8:45 AM, Richard Pieri <richard.pieri at gmail.com>
> wrote:
>
>> He's reinvented APOP.
>
>
> ?There's certainly a similarity. Using the same techniques outside of POP
> in a phone-and-browser setting is darn good idea. ?

tl;dr

And how does one know that the authentication server URL is "the right"
URL and not, say, a MitM/Fishing attack?

-derek

-- 
       Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
       Member, MIT Student Information Processing Board  (SIPB)
       URL: http://web.mit.edu/warlord/    PP-ASEL-IA     N1NWH
       warlord at MIT.EDU                        PGP key available

Follow-Ups:
- [Discuss] Steve Gibson's SQRL
  - From: tmetro+blu at gmail.com (Tom Metro)

References:
- [Discuss] Steve Gibson's SQRL
  - From: tmetro+blu at gmail.com (Tom Metro)
- [Discuss] Steve Gibson's SQRL
  - From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] Steve Gibson's SQRL
  - From: bill.n1vux at gmail.com (Bill Ricker)

Prev by Date: [Discuss] Steve Gibson's SQRL
Next by Date: [Discuss] Steve Gibson's SQRL
Previous by thread: [Discuss] Steve Gibson's SQRL
Next by thread: [Discuss] Steve Gibson's SQRL
Index(es):
- Date
- Thread


BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.