funsec mailing list archives
Re: National Strategy for Trusted Identities in Cyberspace
From: Valdis.Kletnieks () vt edu
Date: Sat, 26 Jun 2010 21:25:11 -0400
On Sat, 26 Jun 2010 17:37:36 PDT, Robert Slade said:
There is no possible way this could potentially go wrong, right? http://www.dhs.gov/xlibrary/assets/ns_tic.pdf
You forgot these two: If everybody has one certified identity, a) How do you protect it? Both "private key stored on the computer" and "password sent to the certifying system" aren't very secure if the user's computer is one of the 150 million compromised systems. Other systems, like smart cards, assume that standardized smart card readers are ubiquitous... b) What recourse does somebody have if their certified identity is stolen? Oh, I forgot - this is a "Strategy" and they have no fscking clue how they'll make it work....
Attachment:
_bin
Description:
_______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- National Strategy for Trusted Identities in Cyberspace Robert Slade (Jun 26)
- Re: National Strategy for Trusted Identities in Cyberspace Valdis . Kletnieks (Jun 26)
- Re: National Strategy for Trusted Identities in Cyberspace Rich Kulawiec (Jun 27)
- Re: National Strategy for Trusted Identities in Cyberspace Dave Paris (Jun 28)
- Re: National Strategy for Trusted Identities in Cyberspace Faith Young (Jun 29)
- Re: National Strategy for Trusted Identities in Cyberspace Rich Kulawiec (Jun 27)
- Re: National Strategy for Trusted Identities in Cyberspace Valdis . Kletnieks (Jun 26)