Hi,
I was wondering if one could use the good idea to enhance the security
for EPP logins and take it one step further and add some additional
related feature: the introduction and support of 2-factor authentication.
While web-based logins are currently in the process of updating and
securing the login process by enforcing/allowing a second factor, this
is not really possible for EPP authentication. If you add an optional
field like "2fa" next to "pw" it could be used for a future 2nd factor.
What do you think about this? I am aware that 2fa is currently not in
use for automated processes (at least I'm not aware of this), but the
changes to the draft would be minimal now. The future possibility to
submit such a string during the log-in process on the other hand could
be of great benefit.
Best regards,
Michael
--
____________________________________________________________________
| |
| knipp | Knipp Medien und Kommunikation GmbH
------- Technologiepark
Martin-Schmeisser-Weg 9
44227 Dortmund
Germany
Dipl.-Informatiker Fon: +49 231 9703-0
Fax: +49 231 9703-200
Dr. Michael Bauland SIP: [email protected]
Software Development E-mail: [email protected]
Register Court:
Amtsgericht Dortmund, HRB 13728
Chief Executive Officers:
Dietmar Knipp, Elmar Knipp
_______________________________________________
regext mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/regext
