Hitoshi Kokumai

5年前 · 1 分の読書時間 · ~10 ·

ブログ作成
>
ブログ Hitoshi
>
Intriguing Evolution from One to Two and Back to One

Intriguing Evolution from One to Two and Back to One

he lock authenticates the key.
The key authenticates the lock.

  

Does the key authenticate
the person who holds it? 

A single factor authentication by a password was a norm until some years ago. In view of the rampant password phishing and data breach, two factor authentications by the password and something possessed deployed in ‘multi-layer’ method have recently been recommended where security matters.

Now some people recommend the removal of the password altogether from the 2 factor schemes and go back to a single factor authentication, this time, by only something possessed with the help of PKI or onetime code.

Shall we imagine what sort of situation we could witness where our identity is authenticated by the verification of a physical token?

"A guy knocked the door of a mansion, claimed to be the owner of the mansion and demanded the residents to leave. The mansion's lock was unlocked by the key that the guy took out of his wallet. In other words, the guy’s key was authenticated by the mansion’s lock.

The guy was accompanied by a shop owner who testified that they had sold the said wallet to the guy. This certifies that the guy was the legitimate owner of the wallet out of which the key was taken out in front of the residents.

Confronted with the integrity of the key verified by the mansion’s lock and the guy’s identity verified by the possession of the said key along with the ownership of the wallet verified by the testimony of the bona fide shop owner, the unhappy residents were unable to insist that the guy was not the owner of the mansion and had to leave the mansion."

In a present digital environment, we might witness a more advanced situation as described in this cartoon (published 14 years ago) -

http://www.mneme.co.jp/english/manga/parody/index1-2.html

It appears that corporations are obsessed with 'low friction customer experience'. There would be nothing wrong with it if the consumers are accurately informed that the security is more or less sacrificed in return for the lower friction experience when it is actually achieved by sacrificing security.

It would be a devastating mistake, however, if consumers are misled to believe that the lower friction experience is achieved without damaging security when the security is actually damaged. The consumers could well get trapped in a serious false sense of security (illusion of safety), which is even worse than lack of security.

Suppliers of security solutions should be more mindful of what they are doing.


< Related Article >


Distracters in Digital Identity

https://www.bebee.com/producer/@hitoshi-kokumai/distracters-in-digital-identity


Departure from Text Password

https://www.bebee.com/producer/@hitoshi-kokumai/departure-from-text-passwords


コメント

Hitoshi Kokumaiの記事

ブログを見る
2年前 · 2 分の読書時間

https://aitechtrend.com/quantum-computing-and-password-authentication/ · My latest article titled ‘Q ...

2年前 · 2 分の読書時間

The quantum computer held in a bad guy’s hand is indeed a big threat. So is the artificial intellige ...

2年前 · 2 分の読書時間

Taken up today is this TechRepublic report on voice print as a new password - https://www.techrepubl ...

この職種に興味がある方はこちら

  • Lian Connect

    l・c・2

    次の場所にあります: Talent JP C2 - 6日前


    Lian Connect Kashihara, 日本

    お仕事情報 · お仕事内容 工場内でのカンタンな軽作業のお仕事です · 主に、スマホ部品・自動車部品・家電・食品・医療機器・医薬品などの製造をするお仕事です · 作業内容はとってもカンタンなので未経験からでも安心して始められます · - 作業内容詳細 - · *ボタンをポチっと押すだけマシンオペレーター業務 · *工具(電動ドライバーなど)を使ったカンタンなネジ締め業務 · *完成した製品にキズやへこみ、破損がないかチェックする検査業務 · *完成した製品をそれぞれ仕分けし梱包する業務 · などなど、業務内容は様々 · 軽作業のお仕事が中心なので、身 ...

  • 公開範囲1.等を含む求人情報を公開する

    農作業員

    次の場所にあります: Talent JP C2 - 1週間前


    公開範囲1.等を含む求人情報を公開する Hachinohe, 日本 フルタイム

    仕事内容 · ・種芋の選別作業 · ・収穫した里芋の箱詰め作業 · ・栽培補助 雇用形態 正社員以外 正社員登用の有無 なし 派遣・請負等 就業形態 派遣・請負ではない 雇用期間 雇用期間の定めなし 就業場所 就業場所 事業所所在地と同じ 〒 青森県八戸市大字尻内町字笹ノ沢48-3 受動喫煙対策 あり(屋内禁煙) マイカー通勤 マイカー通勤 可 駐車場の有無 あり 転勤の可能性 転勤の可能性の有無 なし 年齢 年齢制限 不問 学 ...


  • 株式会社Bace 世田谷区砧, 日本 フルタイム

    店舗名:Minimal -Bean to Bar Chocolate- 祖師ヶ谷大蔵店 · 業態: パティスリー・洋菓子・スイーツ、工房・アトリエ・オンラインショップ · 【2023年9月OPEN】人気のBean to Barチョコレート専門店でショコラティエ&パティシエ募集国際品評会での受賞歴も多数 · 【おすすめポイント】 · ・人気Bean to Barが新店スタッフを募集 · ・チョコレート・スイーツ両方の技術を習得できる環境 · ・カカオ農園やフルーツ産地への訪問研修あり · 【仕事内容】 · ★当社のプロのショコラティエ・パティシエ達と一緒に ...