lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  PHC 
Open Source and information security mailing list archives
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Sat, 16 Feb 2013 09:59:39 -0600
From: Jeffrey Goldberg <>
To: "" <>
Subject: Any "large verifiers" on the panel?

I'm not familiar with everyone on the panel, but I think it would be useful to have someone with an understanding of having to deal with a large number of legitimate authentication sessions.  Someone who, say, manages Gmail logins (IMAP, web, etc) may have insight into what sorts of cost parameters they would like to have.

Basically, it would be really sucky to settle upon a winner and then have sites and services say, "we won't use that because we can't manage our verification costs the way we need to."



Powered by blists - more mailing lists