[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: OneTimePasswd (not Pad)
| I'm about to implement an OTPasswd (mostly like s/key) scheme to my
| www browsers/clients/proxy, but I was wondering is the mere principle
| of storing H^n(S) and requesting H^(n-1) from peer (H beeing your
| favorite one way strong hash function (MD5), and S your seed+secret
| passwd) could possibly be patented somehow and thus preventing using a
| similar scheme without getting a license (from
| bellcore?),.... if there are any usage conditions/restrictions?,...
There is an IETF working group standardizing OTPassword
technology. not sure how active it still is.
"It is seldom that liberty of any kind is lost all at once."