[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: OneTimePasswd (not Pad)

| I'm about to implement an OTPasswd (mostly like s/key) scheme to my
| www browsers/clients/proxy, but I was wondering is the mere principle
| of storing H^n(S) and requesting H^(n-1) from peer (H beeing your
| favorite one way strong hash function (MD5), and S your seed+secret
| passwd) could possibly be patented somehow and thus preventing using a
| similar scheme without getting a license (from
| bellcore?),.... if there are any usage conditions/restrictions?,... 

	There is an IETF working group standardizing OTPassword
technology.  not sure how active it still is.
[email protected]@bellcore.com 


"It is seldom that liberty of any kind is lost all at once."