Have you seen the technique used at http://www.griddatasecurity.com
? Sounds a lot like your original idea.
Screen shot here: http://blogs.zdnet.com/threatchaos/?p=374
-Richard Stiennon
At 02:40 PM 9/28/2006, Leichter, Jerry wrote:
| Circle Bank is using a coordinate matrix to let
|
* Steven M. Bellovin:
Again -- the scheme isn't foolproof, but it's probably *good enough*.
I agree that if you consider this scheme in isolation, it's better
than plain user names and passwords. But I wonder if it significantly
increases customer confusion because banks told their customer
Jon Callas wrote:
Take a look at DKIM (Domain Keys Identified Mail) which does precisely
that. There is an IETF working group for it, and it is presently being
deployed by people like Yahoo, Google, and others. There's support for
it in SpamAssassin as well as a Sendmail milter.
recently
