Anders Rundgren wrote:
<Snip>
There is also no natural home for these issues since Mozilla, Apple, Google and
Microsoft haven't heard about such requirements which is due to the fact that
two-factor-authentication on the US consumer market is close to zero.
In fact, in the Information Card forum which I'm member of, the US participants
always say that "people hate tokens"; completely ignoring that tokens are
more or less a standard utility in the EU, be it mostly of the OTP kind.
Anders
What you need is a way to recognize the existing token cards already
issued to people in the States. Every time I go to an ATM I put my
token card into the machine and enter a PIN. So if you wish to identify
individuals in the States, you have to connect to a credit card issue's
network. Move that code from purchasing code and put it where you want
to use it to identify individuals. You have to assume the possession of
the card and knowing of the PIN, identifies the individual whose name is
encoded on the card. I see this has been done in banking and commerce.
So what problem are you trying to fix? Or am I misunderstanding what
you mean by two-factor?
--
Bill
<Thanks, a Million>
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
