[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [SAGE] Security tokens

To: jsellens@generalconcepts.com, jxh@jxh.com
Subject: Re: [SAGE] Security tokens
From: ant@notatla.demon.co.uk (Antonomasia)
Date: Mon, 20 Jan 2003 23:45:23 +0000 (GMT)
Cc: sage-members@sage.org
Sender: owner-sage-members@usenix.org

From: Jim Hickstein <jxh@jxh.com>

> >| ...  Forcing them in
> >| this case to surrender the one device that gives them their own access,
> >| i.e. making it non-duplicable, is the only way I can see to stop this.

> Actually, one can "give away" a one-time use, say over the phone.  I've 
> used this to advantage when I was travelling, etc., during an emergency. 
> But then you hang up and the next time they need you on the line again. 

This doesn't handle the nuisance users who will use the one-time access
to set up a reverse telnet or something.  I suppose you can argue that
such conduct is sufficiently obviously wrong that you can then punish them
assuming your detection and proof is up to the job.

-- 
##############################################################
# Antonomasia   ant notatla.demon.co.uk                      #
# See http://www.notatla.demon.co.uk/                        #
##############################################################

Follow-Ups:
- Re: [SAGE] Security tokens
  - From: Jim Hickstein <jxh@jxh.com>

Prev by Date: Re: [SAGE] Security tokens
Next by Date: Re: [SAGE] Security tokens
Prev by thread: Re: [SAGE] Security tokens
Next by thread: Re: [SAGE] Security tokens
Index(es):
- Date
- Thread