Now... I could imagine a use for this tech for auth. With a mobile device, you could create a soft token - where the qr code changes frequently - like with a securid. Maybe even as part of a challenge response scheme - where the challenge is displayed to the mobile device as a qr code and the device displays the response as a qr code. I am unaware of anything existing that does this. But I certainly wouldn't see a static printed qr code as useful for AuthN in just about any scenario.
PK
On 2011-04-02, at 3:02 PM, "Joe Zeff" joe@zeff.us wrote:
On 04/02/2011 01:35 PM, Zoltan Hoppar wrote:
Do you think that*maybe* is there any open source authentication possibility what can be utilised with the card? Like PGP signing for files and mails, perhaps?
Let me guess: somebody has decided that you *will* use this technology whether it's appropriate or not, right? To answer your question, it's possible but very unlikely because it's not a good way to do authentication. -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
On 04/02/2011 04:36 PM, Patrick Kobly wrote:
Now... I could imagine a use for this tech for auth. With a mobile device, you could create a soft token - where the qr code changes frequently - like with a securid. Maybe even as part of a challenge response scheme - where the challenge is displayed to the mobile device as a qr code and the device displays the response as a qr code. I am unaware of anything existing that does this. But I certainly wouldn't see a static printed qr code as useful for AuthN in just about any scenario.
I was thinking of the same thing until I saw OP mention it will be on ID cards. If it were on a cell phone, one could type in a PIN to make it somewhat more secure (otherwise copying the QR-generator program would be too easy)
-
Konstantin Svist -
Patrick Kobly