News

InfoWorld16y
Lamport’s one-time password algorithm (or, don’t talk to complete strangers!)
The Lamport algorithm ... passwords, because the window of opportunity to gain access to credentials is much smaller. There’s a practical place for either type of authentication, or even both ...
Wired2y
A Popular Password Hashing Algorithm Starts Its Long Goodbye
Which password hashing algorithm had the target used to protect its users’ passwords? If the answer was a faulty cryptographic function like SHA-1—not to mention the nightmare of passwords ...
Ars Technica1y
Google announces new algorithm that makes FIDO encryption safe from quantum computers
The FIDO2 industry standard adopted five years ago provides the most secure known way to log in to websites because it doesn’t rely on passwords ... algorithms have been in use for decades ...
The Verge7mon
An Okta login bug bypassed checking passwords on some long usernames
The Bcrypt algorithm was used to generate the cache key where we hash a combined string of userId + username + password ... key of a previous successful authentication. The vulnerability can ...