Jacob Kaplan-Moss: authentication

Bookmarks

A Lesson In Timing Attacks (or, Don't use MessageDigest.isEquals) | codahale.com

A very good, simple, overview of how timing attacks work. Also covers the “how realistic is an exploit” question well. (Answer: very.)

(authentication, crypto, security, timingvulnerability)

Django-SocialAuth - Login via twitter, facebook, openid, yahoo, google using a single app. — The Uswaretech Blog - Django Web Development

Looks slick. Gotta give this a try.

(authentication, django, social, webdev)

Bruce Schneier Blazes Through Your Questions - Freakonomics - Opinion - New York Times Blog

Required reading this AM.

(authentication, computing, cryptography, economics, encryption, for:jdunck, freakonomics, internet, interview, security, technology)

Password Manager + AutoFill for Mac OS X

I think I've found a nearly perfect password manager.

(authentication, browser, osx, passwords, security)

Browser-Based Authentication

Yahoo-based single-sign-on.

(api, authentication, identity, webservices, yahoo, ydn)

Copyright Jacob Kaplan-Moss.
Some rights reserved.