> How about not using passwords? All students, staff, and faculty should have ID cards; start issuing smartcards, and start using cryptographic techniques to authenticate users.
Costs. At my university (though of course slightly smaller than Oxford) that would never work.
> Also, digitally sign all official mail, and instruct the users to check those signatures.
Have you met users? That's as good as saying they shouldn't be idiots and never enter their credentials in a site linked in a mail. If that would work all anti virus vendors could close shop.
Costs. At my university (though of course slightly smaller than Oxford) that would never work.
> Also, digitally sign all official mail, and instruct the users to check those signatures.
Have you met users? That's as good as saying they shouldn't be idiots and never enter their credentials in a site linked in a mail. If that would work all anti virus vendors could close shop.