-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 11/15/2013 9:08 AM, Joe St Sauver wrote:
> Hi, > > Stephane commented in response to my assertion: > > #> -- unless we get broad adoption of federated authentication, we'll > #> always have *too many* usernames and passwords > # > #This problem has been solved a long time ago, by password > #managers. Every Web browser have a pretty good one these days [...] > > I must confess that the password managers in some browsers may not > meet my security expectations for secure password storage, although > arguably we're making progress: > > "Google may lock down access to Chrome's stored passwords to bolster > security," > http://www.theverge.com/2013/11/4/5064592/google-may-lock-down-access-chr > ome-stored-passwords > Ditto -- I would more trust (and do use) a stand-alone password manager such as Roboform, Keepass, etc. Browsers leak. :-) - - ferg -----BEGIN PGP SIGNATURE----- Version: PGP Desktop 10.2.0 (Build 2317) Charset: utf-8 wj8DBQFShlmOq1pz9mNUZTMRAkZWAJ9FJA+ndV2SS1UFIXBaOXMeHZ2qNACfc+rk BrYvnpVHeBM3pZLEKby1eWM= =/KW8 -----END PGP SIGNATURE----- _______________________________________________ perpass mailing list [email protected] https://www.ietf.org/mailman/listinfo/perpass
