tman852

join:2010-07-06

Columbus, OH tman852 Member so It works like an authenticator like in WoW?

MyDogHsFleas

Premium Member

join:2007-08-15

Austin, TX MyDogHsFleas Premium Member Re: so



This is certainly a valid type of token that has been used for a long time to effect two-factor authentication. It has the advantage that it is centrally managed and can be deactivated by the server owners. I don't know if this is what the Government is planning to use or not. I'm not a WoW guy but reading the description here it sounds like a simple RSA token that generates a six digit one time passcode you have to enter along with your password.This is certainly a valid type of token that has been used for a long time to effect two-factor authentication. It has the advantage that it is centrally managed and can be deactivated by the server owners. I don't know if this is what the Government is planning to use or not.



thedragonmas

Premium Member

join:2007-12-28

Albany, GA ·VOIPO

Netgear R6300 v2

ARRIS SB6180

thedragonmas Premium Member Re: so said by MyDogHsFleas: I'm not a WoW guy but reading the description here it sounds like a simple RSA token that generates a six digit one time passcode you have to enter along with your password.



This is certainly a valid type of token that has been used for a long time to effect two-factor authentication. It has the advantage that it is centrally managed and can be deactivated by the server owners. I don't know if this is what the Government is planning to use or not.

thats a yes,, its like the token wow uses. course, these will probably cost an arm and a leg..

AlfredNewman6

join:2010-03-25

Columbus, OH AlfredNewman6 Member Re: so This will give the gov a legal way of tracking everything you do. This has bad written all over it and its floating over every city in America. Now all that's left is for the people to open their eyes to realize what this really means to them and our rights.



Corehhi

join:2002-01-28

Bluffton, SC 1 recommendation Corehhi Member I don't like it First I don't like any good idea our government has in general.



Second, someone gets a hold of your unified ID one way or another and they will be able to wreck havoc very quickly. I have three Email's with three different passwords, there is a reason I do that.

MyDogHsFleas

Premium Member

join:2007-08-15

Austin, TX MyDogHsFleas Premium Member Re: I don't like it Well, if someone gets hold of your SSN and DOB, they can (and do) wreak lots of havoc right now. The digital ID would be better protected with two factor authentication (at least), so you have to physically HAVE the device and also KNOW a PIN. Having one or the other does you no good. At some point they should also throw in some kind of biometric so the other authenticator would be something you ARE.

talz13

join:2006-03-15

Avon, OH talz13 Member Re: I don't like it And if you lose your token, you are no longer "you" enough to log in to your bank.

MyDogHsFleas

Premium Member

join:2007-08-15

Austin, TX MyDogHsFleas Premium Member Re: I don't like it Yep. It's like losing your car keys, something you try not to do. But if you do, you can go back to the dealer, prove your identity, and get a new set. It's a hassle (intentionally) but it can be done. If they are the newfangled kind with a chip, they can even de-authorize the old keys.



Exactly so with any token based two factor authentication system. There's an administrator you call if you lose your token (or it breaks). They will deauthorize the lost token in the system, verify your identity, issue you a new one, and off you go (after some delay, hassle, and possibly money spent).



Now go back to the current SSN/DOB system and consider how this works. First off, if you "lose" your SSN/DOB you may not even be aware you lost it until someone steals your assets or compromises you in some way -- because it's not a physical thing. Then, you can't just "replace" your SSN/DOB, you have to change it (at least your SSN!) to some new number, get any number of accounts/databases updated, deal with any number of financial institutions and credit reporting agencies, try to recover your lost assets -- and you don't really know what the scope of the loss is, and you can't remotely "turn off" your SSN/DOB like you can a token.



Which is a better system? I think it's clear.



Simba7

I Void Warranties

join:2003-03-24

Fromberg, MT Simba7 Member Re: I don't like it I don't think it's that easy. Nothing is ever that easy.



What if someone hacks the system and deauthorizes your key? What if the government deems you as a threat and deauthorizes your key? What if someone clones your device then manages to get your password?



This isn't like a regular key to your car or your house. This is a world-wide key that can really screw you over if the wrong people got ahold of it.

MyDogHsFleas

Premium Member

join:2007-08-15

Austin, TX MyDogHsFleas Premium Member Re: I don't like it I agree that it's a bigger deal than a car key, it was just an analogy.



If someone deauthorizes your key, you get a new one.



If the government deauthorizes your key, well, I guess you're back to regular logins. I think it'd be more likely they'd deauthorize access to their own systems that they don't want you in. This gets back to the "this is just a sinister way to gain control over the people" argument.



Cloning the device is certainly a threat. Typically these are much, much harder to clone than, say, a mag stripe card, or certainly a non-digital thing like a passcode. They have tamper detection so that they deactivate themselves if they are opened. And, tapping the link between the device and the computer doesn't reveal any private keys or secrets -- such is the magic of public key encryption. RSA took the simple way: the device simply displays a 6-digit code and your eyeballs read it and retype it into the website, so there's no protocols to hack.



Corehhi

join:2002-01-28

Bluffton, SC Corehhi Member Re: I don't like it said by MyDogHsFleas: I agree that it's a bigger deal than a car key, it was just an analogy.



If the government deauthorizes your key, well, I guess you're back to regular logins. I think it'd be more likely they'd deauthorize access to their own systems that they don't want you in. This gets back to the "this is just a sinister way to gain control over the people" argument.



Cloning the device is certainly a threat. Typically these are much, much harder to clone than, say, a mag stripe card, or certainly a non-digital thing like a passcode.



Sat Tv was never broken as far as encryption from Sat to receiver is was broken at the hardware level at the receiver after the signal has been decoded. I don't want to go into all that but if there is money at stake hackers will always go after the weakest link and in some cases foreign nations very well may be involved in the hacking. World is a dangerous place and some poor East bloc country most likely gives a rats ass about hackers using their country to do what ever as long as some money gets spread around. I won't comment on China.... I think it is very unwise to set up a system that by design allows the US government to shut some one down at a moments notice. I won't go the paranoid route but the governments holy grail is paperless money with every last dime accounted for and taxed. Other side effects of that is battling terrorism which sounds good but who knows what will be considered terrorism? RIAA??? Bet those guys will come up with some crap. RIAA reports you infringed on a copyright bam government closes you down until the investigation is done. You are ruined if that happens. Probably won't happen but you need to think "what are the unintended consequences of this?". The key analogy isn't very good. First off all that is involved is a car, nothing else. Second you have to go to the dealer etc, computer stuff is not done in person. Generally nameless faceless people half way around the world verifying whatever.Sat Tv was never broken as far as encryption from Sat to receiver is was broken at the hardware level at the receiver after the signal has been decoded. I don't want to go into all that but if there is money at stake hackers will always go after the weakest link and in some cases foreign nations very well may be involved in the hacking. World is a dangerous place and some poor East bloc country most likely gives a rats ass about hackers using their country to do what ever as long as some money gets spread around. I won't comment on China.... I think it is very unwise to set up a system that by design allows the US government to shut some one down at a moments notice. I won't go the paranoid route but the governments holy grail is paperless money with every last dime accounted for and taxed. Other side effects of that is battling terrorism which sounds good but who knows what will be considered terrorism? RIAA??? Bet those guys will come up with some crap. RIAA reports you infringed on a copyright bam government closes you down until the investigation is done. You are ruined if that happens. Probably won't happen but you need to think "what are the unintended consequences of this?".

jaywv3010

join:2003-04-02 jaywv3010 to MyDogHsFleas

Member to MyDogHsFleas

said by MyDogHsFleas: Well, if someone gets hold of your SSN and DOB, they can (and do) wreak lots of havoc right now. The digital ID would be better protected with two factor authentication (at least), so you have to physically HAVE the device and also KNOW a PIN. Having one or the other does you no good. At some point they should also throw in some kind of biometric so the other authenticator would be something you ARE.

No thanks..... then when someone steals my wallet they would also cut my finger off!

MyDogHsFleas

Premium Member

join:2007-08-15

Austin, TX MyDogHsFleas Premium Member This is a very good idea we have a de facto national ID now which is your SSN, which is badly protected. Why not have a digital ID? It's all upside -- better protected, easier to use, applies more places.



Note that it is still optional, not mandatory like the SSN.

elray

join:2000-12-16

Santa Monica, CA 3 recommendations elray Member Re: This is a very good idea said by MyDogHsFleas: we have a de facto national ID now which is your SSN, which is badly protected. Why not have a digital ID? It's all upside -- better protected, easier to use, applies more places.



Note that it is still optional, not mandatory like the SSN.





It will only be "optional" if you don't want to register/drive a car/buy gas, use the library, access a hotspot, order home internet service, enroll in school, buy insurance, or receive healthcare. Don't be naive.It will only be "optional" if you don't want to register/drive a car/buy gas, use the library, access a hotspot, order home internet service, enroll in school, buy insurance, or receive healthcare.

MyDogHsFleas

Premium Member

join:2007-08-15

Austin, TX MyDogHsFleas Premium Member Re: This is a very good idea said by elray: said by MyDogHsFleas: we have a de facto national ID now which is your SSN, which is badly protected. Why not have a digital ID? It's all upside -- better protected, easier to use, applies more places.



Note that it is still optional, not mandatory like the SSN.





It will only be "optional" if you don't want to register/drive a car/buy gas, use the library, access a hotspot, order home internet service, enroll in school, buy insurance, or receive healthcare.

Don't be naive.It will only be "optional" if you don't want to register/drive a car/buy gas, use the library, access a hotspot, order home internet service, enroll in school, buy insurance, or receive healthcare.



Those who scream "National ID! No!" are just posturing (or stupid). We already have a national ID, it's called your SSN. If this comes to pass over time, you'll still be better off than you are with your SSN/DOB/Birth Certificate/etc. Better technology, easier to use, better protection. I really don't see the downside.Those who scream "National ID! No!" are just posturing (or stupid). We already have a national ID, it's called your SSN.

tman852

join:2010-07-06

Columbus, OH 1 recommendation tman852 Member Re: This is a very good idea Your SSN also isn't required for everything you do on the internet either. If someone gets ahold of this, they can wreak havoc on everything from simple online subscriptions and your money to the most precious personal information you have. Quite frankly, the less the government knows about me and tracks me, the better. The more complicated you make something, more can and usually will go wrong. I trust myself enough to not make any dumbass mistakes on the internet, which includes making the right decisions when sending out my personal information to other agencies or companies.

MyDogHsFleas

Premium Member

join:2007-08-15

Austin, TX MyDogHsFleas Premium Member Re: This is a very good idea Yes, you're right that SSN isn't required for everything. But the kinds of things they are talking about generally do require SSN: most financial accounts, or most government transactions, are SSN governed. I would think that this is where the ID would be used. All your credit cards, bank accounts, and your accounts with the Government (IRS, Social Security, Medicare, etc.) all are SSN based. So you are already being tracked. Take a look at your credit report sometime.



And, again, the "if someone gets ahold of this" answer is: compared to what? Compared to now where someone "gets ahold" of your SSN, it's better to have a digital ID, in my humble opinion.



BigBrother

@50.36.239.x BigBrother to MyDogHsFleas

Anon to MyDogHsFleas

No Thank You. Then Big Brother will want to implant these authenticators into our bodies tracking all our accounts and where abouts. They do this now, but this steps up the system for when you don't follow their orders they will block you from accessing your bank account. No Money, No Food = Tyranny

MyDogHsFleas

Premium Member

join:2007-08-15

Austin, TX MyDogHsFleas Premium Member Re: This is a very good idea Yep that's the standard rejoinder from both the far right and far left -- especially the Alex Jones "Prison Planet" type crowd. It's the old "slippery slope" argument -- "If we let them do this today, I KNOW they have REAL motives in mind that are sinister, and I KNOW they will go there... so fight that first step!"



What this ignores is the reality of the situation.



You are ALREADY being tracked and, if the government is motivated enough and gets the right authorizations, they CAN already block you from accessing your bank account or anything else they care to do.



At least implementing some new technology will make it a bit more transparent, and also make it easier for the government to avoid stupid bureaucratic blunders (like putting your name on a no fly list just because it's like the name of a known bad guy).



But hey, if you're the type of person who thinks they should always be able to stage an armed revolution against the Government if it gets too uppity, you probably really don't want yourself being under this regime. So go live in the woods and hunt your own food and water.

elray

join:2000-12-16

Santa Monica, CA elray Member Re: This is a very good idea said by MyDogHsFleas: What this ignores is the reality of the situation.



You are ALREADY being tracked and, if the government is motivated enough and gets the right authorizations, they CAN already block you from accessing your bank account or anything else they care to do.





We have a government which would very much like to control your behavior, and while I distrust the left more than the right, both have their sinister plans, all of which deprive us of our liberty, and all of which work better with a national ID, preferably implanted.



While the government can block you from your bank account, they can't block everyone else from giving you money or food or shelter. Once we have a national ID / smartcard / implant, they can.



The current regime wants us to 1099 our gardener, plumber, electrician, mechanic, housepainter, etc. We finally repealed that nonsense this week, but with a national ID, they wouldn't have to ask.



Our state and federal governments already moved once to install centralized thermostat authority. In the name of "carbon pollution", the Green Police were to be appointed to decide what an appropriate temperature setting is for your house, and enforce it. With a national ID, the number of ways they could abuse you would make the bank and airline fee people jealous.



You will no doubt, dismiss the potential for abuse as fantasy. But in my lifetime, any and all projected or imagined abuse is at least attempted and often succeeds.



Abuse will exist without a National ID, but creating one will just make it easier for those in power to misbehave at our expense. We don't need to give them any help. Yes, we are already *tracked*. But that tracking is not yet tied, in real time, to your car ignition, your utility meter, your bus pass, the grocery store (ever try to by real Nyqil?), the post office, your phone lines, the pharmacy and medical clinic.We have a government which would very much like to control your behavior, and while I distrust the left more than the right, both have their sinister plans, all of which deprive us of our liberty, and all of which work better with a national ID, preferably implanted.While the government can block you from your bank account, they can't block everyone else from giving you money or food or shelter. Once we have a national ID / smartcard / implant, they can.The current regime wants us to 1099 our gardener, plumber, electrician, mechanic, housepainter, etc. We finally repealed that nonsense this week, but with a national ID, they wouldn't have to ask.Our state and federal governments already moved once to install centralized thermostat authority. In the name of "carbon pollution", the Green Police were to be appointed to decide what an appropriate temperature setting is for your house, and enforce it. With a national ID, the number of ways they could abuse you would make the bank and airline fee people jealous.You will no doubt, dismiss the potential for abuse as fantasy. But in my lifetime, any and all projected or imagined abuse is at least attempted and often succeeds.Abuse will exist without a National ID, but creating one will just make it easier for those in power to misbehave at our expense. We don't need to give them any help.



fatness

subtle



join:2000-11-17

fishing fatness to MyDogHsFleas

to MyDogHsFleas

said by MyDogHsFleas: we have a de facto national ID now which is your SSN, which is badly protected. Why not have a digital ID?





When has the government ever tried a tracking system like this to help people? Seriously. The abuse potential is higher with the government than with any private business because they either make the law or are above it.







President Not Sure disapproves You just explained the reason -- the government-mandated social security number is badly protected. A digital ID will be badly protected also.When has the government ever tried a tracking system like this to help people? Seriously. The abuse potential is higher with the government than with any private business because they either make the law or are above it.



TamaraB

Question The Current Paradigm

Premium Member

join:2000-11-08

Da Bronx Ubiquiti NSM5

Synology RT2600ac

Apple AirPort Extreme (2013)

TamaraB Premium Member Re: This is a very good idea said by fatness: ... The abuse potential is higher with the government than with any private business because they either make the law or are above it.





In today's corporatist society, your privacy is much more in danger from rapacious capitalists, wanting to make a buck on your every move, than the government.



Bob Not when the government sector and the corporate sector are essentially one and the same. The only safety here is keeping your on-line ID out of both corporate and government hands. It needs to be PUBLIC and OPEN-SOURCE, totally de-centralized, and free from both government control and profit.In today's corporatist society, your privacy is much more in danger from rapacious capitalists, wanting to make a buck on your every move, than the government.Bob

TamaraB TamaraB to MyDogHsFleas

Premium Member to MyDogHsFleas

said by MyDogHsFleas: we have a de facto national ID now which is your SSN, which is badly protected. Why not have a digital ID?





SSN's security is already compromised by the fact that it is held by many corporate institutions, and governments not the least of which is your bank; for purposes having nothing to do with it's original intent. IE ABUSE.



See:



Giving the government even more control over your identity is a massive mistake.



Besides, we already have a de-centralized system of on-line identification it's called



Bob Your SSN was supposed to be used ONLY for social security!!! It has morphed into a de-facto national ID. Something it was never designed to be.SSN's security is already compromised by the fact that it is held by many corporate institutions, and governments not the least of which is your bank; for purposes having nothing to do with it's original intent. IESee: Texas exposes addresses, SSNs of 3.5 million residents For why it is a very bad Idea to give the government any more power in terms of your identity. They abuse it, and treat it like toilet paper!Giving the government even more control over your identity is a massive mistake.Besides, we already have a de-centralized system of on-line identification it's called OpenID . OpenID is de-centralized and under YOUR control, not the government's. OpenID is far less susceptible to government over-reach and inevitable abuse.Bob



FFH5

Premium Member

join:2002-03-03

Tavistock NJ 1 recommendation FFH5 Premium Member Simpler, but not more secure or private A single userid & password for all web sites, including secure ones, would simplify your online life, and make it easier to provide and verify your identity to any sites requiring it. But I see a couple of problems.



1st it would make it easier to track where you go and what you do, and that also means it would be easier to use that info against you - even if it would require court action to obtain that info.



2nd would be the vulnerability to hacking attempts. If hackers cracked that national ID database, they then get access to everything you are and everywhere you go. This would be identity theft possibility on a huge scale.

MyDogHsFleas

Premium Member

join:2007-08-15

Austin, TX MyDogHsFleas Premium Member Re: Simpler, but not more secure or private 1) Anonymity was never really there, so get over it. The Internet is not magic -- you don't have some weird right to log in anonymously and never reveal your true identity even to a court ordered search. Just like in real life.



2) Yes this is a real issue. It needs to be implemented such that cracking the servers would not allow someone to impersonate an individual. This is not a new subject, public-key encryption has been doing this for quite a while. You just have to be careful how you manage your certifiers.



FFH5

Premium Member

join:2002-03-03

Tavistock NJ FFH5 Premium Member Re: Simpler, but not more secure or private said by MyDogHsFleas: You just have to be careful how you manage your certifiers.

Not so easy. Just ask all the people and groups using Comodo.

MyDogHsFleas

Premium Member

join:2007-08-15

Austin, TX MyDogHsFleas Premium Member Re: Simpler, but not more secure or private Yes that's why I said you have to be careful. It's not difficult but you have to have a process in place and manage it.



An analogy would be managing master keys for a hotel that has the electronic card key system. The only sane way to do it is to have the hotel management be in charge of the master key making system and be able to track all the master keys usage, and also carefully guard the superuser password/key token that lets you make new master keys (like keep it in a safe with someone guarding it 24 hrs/day). That's what you have to do with the master certifier and the system for making new root certificates, in the public key encryption regime.



What happened with the Comodo hack is that they essentially (by analogy) let a whole bunch of other organizations gain the ability to create master keys for the hotel and simply trusted them not to do anything stupid or criminal. Not a good policy. You're likely to get lots of guest rooms have stuff stolen from them. Anyone could have seen this coming. Duh.

your moderator at work hidden :



asdfdfdfdfdf

@myvzw.com asdfdfdfdfdf to MyDogHsFleas

Anon to MyDogHsFleas

Re: Simpler, but not more secure or private "1) Anonymity was never really there, so get over it. The Internet is not magic -- you don't have some weird right to log in anonymously and never reveal your true identity even to a court ordered search. Just like in real life."



I don't quite buy this form of reasoning. Of course there are limits to anonymity and of course the government has the money, resources and manpower to find out anything if it wants to badly enough.

That doesn't negate the fact that having a single identity for most of your online activity makes it much easier to string together and consolidate information about you and your behavior. It's not all or nothing. It's a question of degrees and of making things as difficult as possible for the government so they have less incentive to get into the habit of monitoring everyone constantly. It's like any other kind of bad behavior. The easier you make it for the government to indulge it's worst tendencies the more likely that it will do so. Resigning oneself to the trend and throwing up one's hands seems harmful to me.

MTU

Premium Member

join:2005-02-15

San Luis Obispo, CA MTU Premium Member Internet I.D. SS#'s are not in the same class as this planned Internet ID. The Internet ID will be your 'fingerprint' to all 'net usage. The fact is that false, and/or incriminating, data has already been used as tool to silence (arrest, prosecute, intimidate) Internet users in China. This same 'technique' has likely already been used in 'democracies' (incl, the USA) for similar purposes. By spoofing your new 'fingerprint', the burden of guilt will shift to the accused.



ArrayList

DevOps

Premium Member

join:2005-03-19

Mullica Hill, NJ ArrayList Premium Member if.... this is done with IT Security best practices and they stuck to the best practices they could make it work.

wrad

join:2003-09-11

Fort Pierce, FL wrad Member On-Line ID How about big-zero give us all a YubiKey?

MyDogHsFleas

Premium Member

join:2007-08-15

Austin, TX MyDogHsFleas Premium Member Re: On-Line ID



And now, I have the last reply to EVERY thread on this forum. Hadn't heard of it but looked it up here . Looks like a reasonable solution.And now, I have the last reply to EVERY thread on this forum.



gerick

join:2001-01-17

San Antonio, TX ARRIS NVG589

Netgear Nighthawk XR500

Netgear EX8000

gerick Member Common Access Card (CAC) The Common Access Card (CAC) has many objectives, including controlling access to computer networks, enabling users to sign documents electronically, encrypt email messages, and enter controlled facilities. The CAC is issued to all active duty military, Reserves, National Guard, DoD civilians; non-DoD/other government employees and State Employees of the National Guard and eligible DoD contractors who need access to DoD facilities or DoD computer network systems.

»en.wikipedia.org/wiki/Co ··· ess_Card



Personally, I would like a something like this to use for civilian purposes to authenticate to banking and digital signatures. This is very similar to what every Department of Defense employee and contractor and anybody who has access to DoD systems already has. Everyone is issued a smartcard that has PKI certificates for authentication and encryption.Personally, I would like a something like this to use for civilian purposes to authenticate to banking and digital signatures.



exocet_cm

Writing

Premium Member

join:2003-03-23

Brooklyn, NY exocet_cm Premium Member 25 passwords And counting. I like a different password for all my tasks. It makes a breach in one area isolated from the rest of my activities.



I'll pass on this one.

flbas1

join:2010-02-03

Fort Lauderdale, FL 1 recommendation flbas1 Member questions 1) how much internet am I supposed to use when it is capped and not worth the overages? granted, i will probably still bank - but don't see me surfing thru amazon.com all day or something. Plus - once I login to the site, they will know who I am; and can cross-reference my IP; so there goes my anonymity.

And, the new ID will probably be stuck in a Flash Super-Cookie so there goes my anonymity again.



2) why punish ME with a simpleton password - when I don't give out my details. Big companies get compromised or give them out; give them more work. Trust me - if some stranger asks me for my SSN or DOB, I don't say yes. But, some email spam company gets hacked (last week) - a company that I did not vet or know, therefore don't trust, and I have to clean the mess up.



Going on - so now a tax preparation company needs my SSN for taxes. Would I give them my NistID - or my NistID + SSN? where is the value for all of the additional money and work?



3) How is this different than, say OpenID or something.



4) why not make life easy and issue me a static IPv6 ID, and have that registered at a central database. When I change ISP's, I take my IPv6 with me (like my phone number), and now we all know who I am.



5) is this a public-funded project? while we are having financial issues? where are they getting the money?

mogooder

join:2002-11-26

Washougal, WA mogooder Member Re: questions The Gov proves time and time again, it can't slap its ASS with both hands. This is just another time.



RUJPhknKdnMe

MyDogHsFleas

Premium Member

join:2007-08-15

Austin, TX 1 recommendation MyDogHsFleas Premium Member Re: questions Wouldn't it be easier to slap your ass with one hand than two hands? lol



I'll take a shot at the questions



1) basically the only thing that will run you up against caps is streaming video or downloading huge binaries. This has nothing to do with Internet ID so is a red herring. Yep you don't have anonymity, but you never really did.



2) not really following the first paragraph. Re tax prep -- yep if you it online I'm sure they'd want you to login with your government ID. The value is that it's more secure than typing in your SSN which anyone can do if they know your SSN.



3) Not all that different. Just managed by the gov't. The technology is not new.



4) Not a bad idea, but where's the security? I'm really asking cause I don't know. Can you authenticate your IPV6 address?



5) You know the answer! Of course it's funded by the gov't.



moldypickle

Premium Member

join:2009-01-04

Haughton, LA 496.2 41.6

Netgear CM600

Ubiquiti Unifi Security Gateway

Ubiquiti UniFi UAP-nanoHD

moldypickle Premium Member ... not sure why the SSN got in this convo. i personally don't log into anything using my social, but ok. and even if the SSN or DOB is stolen, the same damage will be done with or without this new system. so that's kinda null i think.



anyways, i'm not liking this idea for the simple fact that it's being suggested in the article that the same password combo that accesses personal data and bank info will let you into social sites and possibly less secure, smaller sites. if one leaks, that could be a problem.



i aswell am one that uses completely different passwords and login names for all my sites. if one is stolen then i can manage it quicker.



badrouter11

@bellsouth.net badrouter11 Anon thanks intel So now all of you know what intel was thinking when they made that ipt tech and built it into all the new intel processors. Say goodbye to human rights to privacy and hello to komrade govt:-( Oh sure at first it is optional but eventually they the govt will just make it mandatory for anyone here to access the internet along with a very high monthly bill for using the internet. That should be sufficient to stifle free speech and make the mafiaa happy.



No thanks

@comcast.net No thanks Anon No thanks The FBI, CIA, DEA, INS, Military, agencies from all 50 states, etc... would all want access. Crooks like the RIAA & MPAA would lobby for access so they could stop pirates.



How long before the security is compromised?

How long would it take the government to fix it after it was?



No thanks I'd rather remember a few passwords.



StBrandon

@charter.com StBrandon Anon MyDogHasFleas This guy is a gov't plant! He is defending this crap left and right. How in the hell can you not see anything negative here?? I see both sides and I'd rather not have this crap. Prove me wrong and tell me some negatives about this or I'm gonna hold to my guns that you are an astroturf gov't plant.

MyDogHsFleas

Premium Member

join:2007-08-15

Austin, TX 1 edit MyDogHsFleas Premium Member Re: MyDogHasFleas



Oh, and by the way, it's MyDogHsFleas, not that other guy MyDogHasFleas, who is really a bad character.



Seriously.. they only allow 12 character IDs here so I had to lose one of the letters. You go ahead and hold to those guns, pardner. Whatever floats your boat.Oh, and by the way, it's MyDogHsFleas, not that other guy MyDogHasFleas, who is really a bad character.Seriously.. they only allow 12 character IDs here so I had to lose one of the letters.



dks7

join:2004-05-31

Omak, WA dks7 Member Screw That Outline these nuts Obama on your chin!



JamesPC

join:2005-10-12

Orange, CA JamesPC Member Disturbing. NOT GOOD!



FreedomBuild

Well done is better than well said

Premium Member

join:2004-10-08

Rockford, IL FreedomBuild Premium Member "Enhance" my backside "Interested consumers would obtain a single identifier --such as a unique piece of software on a smart phone, a smart card, or a token"...or a chip..This is more data mining and collaboration in disguise.



Anytime to word 'Enhancement" or "Enhances" is used any more, it generally eludes to pure PR BS

vinnie97

Premium Member

join:2003-12-05

US vinnie97 Premium Member Danger Sure, hand over more peering power to statists hellbent on enhancing authoritarian control...what could possibly go wrong?

nitzan

Premium Member

join:2008-02-27 nitzan Premium Member Hell no. What a huge waste of our tax dollars!!! Nobody wants this but the government (so they can easily spy on you when they need to). If any business tries to force me to use this system it will be the last time I do business with them. I like key-based authentication - but I don't want to be FORCED to use it - nor do I want to allow some third party to have access to it. The whole point in key-based auth is that it's supposed to be more secure - but it's not secure if someone else (the government, or even some rogue underpaid employee) can override it.