Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

How would one authenticate from two different devices? Moving certificates around has plenty of issues.


DON'T MOVE CERTIFICATES.

You need another way of authenticating someone as well, whether it by SMS, biometrics or passwords.

Client-side certificates can be used as one-part of two-factor authentication or on their own depending on the level of security needed.

Oh, and btw, DON'T MOVE CERTIFICATES!


You could have the certificate follow the device, rather than the user.


If the certificate is device-bound, then how do you authenticate from another device?




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: