Thursday, September 11, 2008

Lipstick & Pigs

Just to be clear about lipstick and pigs, I want to point out that during my DIDW presentation -- before anybody questioned it -- I pointed out that our proof-of-concept demo showed a strong authentication credential being issued based solely on a username and password. I also explained that in a real-world situation, the bank would have only issued the credential under some higher level of authentication and went on to describe several options the bank would use.

Paul "claims" he had picked up on that issue before I mentioned it. With him sitting next to the very distracting Pamela during the session, I'm not sure we should believe him.

No comments: