Hacker News new | past | comments | ask | show | jobs | submit login

I wish websites would actually use client certificate authentication instead of having to play hot potato with secret passwords.



This a thousand times. And ssh keys for servers.

But then, how would you log into e.g. gmail from a cybercoffee in a foreign country? (Assuming you dare do so in spite of the risk of key loggers.)


> But then, how would you log into e.g. gmail from a cybercoffee in a foreign country? (Assuming you dare do so in spite of the risk of key loggers.)

This still applies with any other authentication schemes...




Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: