This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/ncc-services-wg@ripe.net/
[ncc-services-wg] Proposed Implementation for Two-Factor Authentication
- Previous message (by thread): [ncc-services-wg] Proposed Implementation for Two-Factor Authentication
- Next message (by thread): [ncc-services-wg] comments on proposal 2012-07
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Gilles Massen
gilles.massen at restena.lu
Thu Dec 12 09:01:20 CET 2013
Hello Alex, On 12/11/2013 12:51 PM, Alex Band wrote: > 2. Build an implementation for two-factor authentication for RIPE NCC > Access, supporting at least: - HMAC-Based One-Time Password (HOTP) - > Time-Based One-Time Password (TOTP) Good idea, I completely agree. I would like to suggest you to investigate also the possiblity of a 2 layer access. For example, at this point I find it quite annoying that the the authentication times out after an hour (?) - especially when playing with low-impact stuff like RIPE Atlas. So requiring an OTP once an hour will be very inconvenient. A possible way: keep username/password for 'simple' services (ideally with a longer timeout), ask additionally for the OTP only when a more sensitive service is accessed (like lirportal). Best regards, Gilles -- Fondation RESTENA - DNS-LU 6, rue Coudenhove-Kalergi L-1359 Luxembourg tel: (+352) 424409 fax: (+352) 422473
- Previous message (by thread): [ncc-services-wg] Proposed Implementation for Two-Factor Authentication
- Next message (by thread): [ncc-services-wg] comments on proposal 2012-07
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]