Slashdot Mirror

← Back to Stories (view on slashdot.org)

Bill Gates Proclaims End of Passwords

Posted by CmdrTaco on from the trustno1-is-a-bad-password dept.

KrazyK writes "Bill Gates has just proclaimed the end of passwords. There's only one drawback - you have to use .Net (well, what else would you expect?). However, the smart card that is at the centre of it - made by Axalto - is still a great bit of technology. How long before we can get an open-source version of this?"

10 of 488 comments (clear)

  1. end of passwords - not by martin · · Score: 5, Informative

    So how do you 'unlock' the smart card to prove its you (and still you) at the keyboard...???

    an PIN number...
    a fingerprint...

    Authentication is based around something you have (userid/smartcard/finger...) and something you know (password/PIN/....)

    No change since the Secuure Single Sign On days of the mid 1990's. All they are doing is bringing it upto date using .NET to quickly build applications.

  2. Not a password replacement by Albanach · · Score: 4, Informative

    Reading the Axalto press release they talk about their cards as an additional form of security, not a password replacement. I've used smart cards for a few things and each of them has been protected by a password too. You enter the smart card and are then asked for a PIN to ensure you have the right to be using that smart card. As another poster said, if there's no password all they have to do is get to your wallet if they want to Get Root. Hopefully if we do see an open source implimentation it won't be passwordless!

  3. How is this better than the Java iButton? by WillerZ · · Score: 3, Informative

    See this page:

    http://www.ibutton.com/ibuttons/java.html

    I've had one of these Java-powered iButtons since 2001. If you have the PKI in place it's a very easy technology to use. If you don't, it just gives you bragging rights in the my-computer-is-smaller wars.

    Both good.

    Phil

    --
    I guess today is a passable day to die.
  4. Re:Hmmmm.... by isaaccp · · Score: 5, Informative

    Also available in Linux, check the USB PAM module: http://lists.debian.org/debian-mentors/2004/02/msg 00143.html

  5. Re:Didn't Sun do this 5 years ago? by WillerZ · · Score: 3, Informative

    The Java ring was a Dallas Semiconductor DS1955A iButton in a signet ring holder. The 1955A could only hold one key. The 1955B is a bit more useful, as it can hold about 30 keys. I have the dog-tag holder for it, but I wish I'd gone for the USB fob.

    Don't waste your time by getting the parallel-port adapter, as most modern machines seem to have trouble providing enough power to the iButton for the compute-intensive parts of the process. On the last 3 machines I've had it's been impossible to generate keys because the parallel port can't deliver the necessary oomph.

    The serial adapter is probably the best bet for iButtons if you want to use them from Unix/Linux.

    Phil

    --
    I guess today is a passable day to die.
  6. And over in Java... by MosesJones · · Score: 5, Informative


    A classic case of Billy boy announcing something everyone else has. I saw a demo by Sony about 2.5 years ago now which demonstrated smart card + biometrics as an authentication mechanism.

    Something like 98% of the world's new smart cards run Java as their programming language, and there are defined standards for security around it. This stuff is already being used in the wild, for instance by the DoD. Oh and if you have one of those "Blue" or clear Amex credit cards... its running Java too.

    Or of course you could wait for Longhorn.

    In terms of open source, you can do this in Java (which is published and the source is accessible), today.

    I love Microsoft, "yesterday's technology, tommorow".

    --
    An Eye for an Eye will make the whole world blind - Gandhi
  7. Re:Um... no? by lee7guy · · Score: 5, Informative

    Also, you don't leave your smartcard at every place you visit, which is the case with fingerprints. You can easily make a gelatine film with fingerprints collected on everyday objects. No fancy equipment required either. When researches tested the technique at a recent show, every fingerprint reading device they were allowed to test, were fooled.

    Retinas at least doesn't leave traces everywhere, but then you still run the risk of data theft.

    --
    Ceterum censeo Microsoftem esse delendam
  8. It is called Kerberos by LakeSolon · · Score: 3, Informative

    Linux already has this sort of technology, it is even interoperable with Windows, Solaris, UNICOS and AIX. It is called Kerberos.

  9. Re:Anybody else notice this came from a French co. by mikechant · · Score: 3, Informative

    Most of the French crypto restrictions were removed in 1999. E.g. see http://www.sobco.com/nww/1999.edited/04-crypto.htm l
    and some of the other articles found by googling for "france encryption restrictions relaxed" or similar

  10. A bit of a myth, yes. by GQuon · · Score: 3, Informative

    One of the things such sensors check for is blood flow. So naturally they'll just have to kill you afterwards, but you won't be needlessly mutilated.

    Yes. Some biometric sensors can be tricked with dead tissue or a photocopied fingerprint, but the good ones detect life signs. (This is the case for both good fingerprint sensors, reading electric impulses instead of light, and retinal scans that measure blood flow.)
    Some sensors are even active, checking how the body reacts to stimuli, for example how the iris reacting to light, comparing it with a recorded sample.

    --
    Irene KHAAAAAAN!