Join Early Retirement Today
Thread Tools Search this Thread Display Modes
Old 04-17-2011, 07:14 AM   #21
MichaelB's Avatar
Join Date: Jan 2008
Location: Gone fishing
Posts: 25,775
White House Unveils Plan for Secure Online IDs

The White House on Friday outlined its plan for a secure online identification system intended to allow people to ditch the user ID/password setup for a "trusted identity" they would obtain from a private company that specializes in verifying identities.
White House Unveils Plan for Secure Online IDs | News & Opinion |

Seems the White House has been following this thread as well.

MichaelB is online now   Reply With Quote
Join the #1 Early Retirement and Financial Independence Forum Today - It's Totally Free!

Are you planning to be financially independent as early as possible so you can live life on your own terms? Discuss successful investing strategies, asset allocation models, tax strategies and other related topics in our online forum community. Our members range from young folks just starting their journey to financial independence, military retirees and even multimillionaires. No matter where you fit in you'll find that is a great community to join. Best of all it's totally FREE!

You are currently viewing our boards as a guest so you have limited access to our community. Please take the time to register and you will gain a lot of great new features including; the ability to participate in discussions, network with our members, see fewer ads, upload photographs, create a retirement blog, send private messages and so much, much more!

Old 04-17-2011, 07:15 AM   #22
Thinks s/he gets paid by the post
target2019's Avatar
Join Date: Dec 2008
Posts: 3,857
Originally Posted by chinaco View Post
There is no such thing as a completely secure computer... unless it is turned off.

[edited out stuff here]

A better practice is to use a limited privilege account (or guest access privileges). Those accounts do not allow the user to install software (or attackers that try to take control during their logged in session). Of course, the user cannot install software themselves so they would need to log in the an admin level account for computer maintenance tasks. This is a hassle, but IMO a worthwhile trade-off of convenience for security.

This practice is not fool proof but it can foil certain types of attacks. There are other ways attackers can compromise a computer that is in use with a limited privilege account...
That computer you mention must also have the network cable disconnected, lest a magic packet be sent to wake the computer up.
The limited account idea is very good. I admin a small business network distributed to 8 locations. Where the employees have re-infected their computers several times, I have installed new systems with limited accounts. The new systems are humming along with no internet games or specialized screen savers installed. The business manager asked for the admin password, as it was limiting for them. I refused, and then was asked by the operations manager for updated list of all passwords. I sent them, included my warning that the admin password must not be given to anyone. I expect service calls to double as a result of this.

target2019 is offline   Reply With Quote
Old 04-17-2011, 03:58 PM   #23
Moderator Emeritus
Join Date: Oct 2007
Posts: 4,929
Originally Posted by MichaelB View Post
White House Unveils Plan for Secure Online IDs

White House Unveils Plan for Secure Online IDs | News & Opinion |

Seems the White House has been following this thread as well.
Ah, yeah, about that...

This becomes what a systems engineer would call a single point of failure.

The approach is vulnerable to a type of man in the middle attack which allows the attacker to take over your trusted ID for the duration of a session. Public WiFi networks are ideal for deploying this sort of attack. The method works well against RSA token devices and similar one-time 'secure' authentication mechanisms.

Then, of course, there will be the inevitable break-in to the secure online ID provider.
M Paquette is offline   Reply With Quote
Old 04-17-2011, 06:34 PM   #24
Thinks s/he gets paid by the post
GregLee's Avatar
Join Date: Oct 2010
Location: Waimanalo, HI
Posts: 1,881
I have 4 user names and corresponding passwords. I don't know that it is a good system --- it just sort of evolved over the years. I'd be interested in any critical comment. (1) my high security name/password I use for root on my home systems and for the systems at work I administered (before I retired), (2) my personal accounts at home and at work, (3a) one net name and (3b) another net name, both with the same password, which I use for forums and for purchasing accounts like Amazon. The (1) and (2) ids have never been exposed on the net.

Greg (retired in 2010 at age 68, state pension)
GregLee is offline   Reply With Quote

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
New Toy Safety concerns: calmloki Other topics 2 11-15-2007 05:35 PM
Thoughts concerns for ex military. newguy88 Other topics 5 07-01-2007 06:25 PM
FIRE Health Insurance Concerns mikex Health and Early Retirement 14 05-26-2007 03:39 PM
Weak Dollar - Any Concerns F-One FIRE and Money 30 04-25-2007 01:25 PM
After you are gone ! Any concerns ? frayne Life after FIRE 32 12-16-2005 09:12 PM


All times are GMT -6. The time now is 08:10 AM.
Powered by vBulletin® Version 3.8.8 Beta 1
Copyright ©2000 - 2018, vBulletin Solutions, Inc.