On 16 Apr 2018, at 18:40, Alex Wilson wrote:
We intend to integrate this into the stack as much as we can, and
RFD77
has more details:
https://github.com/joyent/rfd/blob/master/rfd/0077/README.adoc
Basically our recommendation is going to be to use hardware tokens
(Yubikeys or other PIV-compatible USB tokens) to store the keys to
unlock the on-disk encryption. This allows unattended booting to be a
possibility, unlike with passphrase-based keys. We also have a
detailed
proposal in there for how recovery will work in the event of a
hardware
token failure.
Can we please have a formal definition of how non-US layout keyboards
will be handled for the entry of passwords (see first paragraph of
section 4.5. Binder and service registration for the mention of "a
legacy username and password")?
TIA.
-------------------------------------------
smartos-discuss
Archives: https://www.listbox.com/member/archive/184463/=now
Modify Your Subscription:
https://www.listbox.com/member/?member_id=25769125&id_secret=25769125-7688e9fb
Powered by Listbox: http://www.listbox.com
