RE: Solving password/key security when 'The World is your Computer'



Additionally, if the online backend for Online Desktop acted as an OpenID provider ( http://www.openidenabled.com/), you could be loged into a bunch of services just by logging into your desktop (whether with a memory stick or in the traditional fashion).

Stu



On 8/2/07, Stef Walter < stef-list memberwebs com> wrote:
Just in case anyone is thinking of the same issues.

A lot of discussion is going on along the lines of getting a user's
desktop unbound from a physical computer, and letting the user peruse
his/her settings, data from all over.

One issue is that of passwords and (private) encryption keys. It seems
it's poor security to let this data be stored on some server accessible
from anywhere and protected only by a password.

The idea is to store passwords and/or encryption keys on a removable
disk (such as a USB thumb drive) and allow our user to have them
available when it is inserted into a computer. [1]

Gnome Keyring already supports this for passwords, and by GNOME 2.22
should support SSH and other keys in this manner.

Obviously this isn't a solution for those with special security needs.
But those folks should be using a single machine anyway.

Cheers,
Stef Walter


[1] The machine needs to be free from malware or trojans. But that's the
case with any computer you entrust with access to our data (whether
stored online or not), passwords etc...

_______________________________________________
desktop-devel-list mailing list
desktop-devel-list gnome org
http://mail.gnome.org/mailman/listinfo/desktop-devel-list



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]